Key information management device, key information management method, and computer readable medium storing key information management program

ABSTRACT

A key information management device includes a key information distribution unit configured to distribute, to a mobile terminal, key information for unlocking or activating a vehicle by the mobile terminal transmitting a predetermined transmission signal to the vehicle, and the key information distribution unit makes an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, different according to the mobile terminal that is a distribution target.

INCORPORATION BY REFERENCE

The disclosure of Japanese Patent Application No. 2017-205676 filed on Oct. 24, 2017 including the specification, drawings and abstract is incorporated herein by reference in its entirety.

BACKGROUND 1. Technical Field

The present disclosure relates to a key information management device, a key information management method, and a computer readable medium storing a key information management program.

2. Description of Related Art

For example, a key information management system is disclosed in which, even when a master key is lost, key information transmitted from a server is received by a mobile terminal and the mobile terminal can be used as an electronic key for unlocking or activating a vehicle (see Japanese Unexamined Patent Application Publication No. 2006-118122 (JP 2006-118122 A) or the like).

SUMMARY

However, a user of a mobile terminal that is a distribution target of key information (hereinafter simply referred to as a “distribution target”) may be an owner user of a vehicle or a user other than the user of the vehicle, such as a family member or a friend of the owner user. For example, there is a car sharing service (hereinafter referred to as a “C2C car sharing service”) of supporting rental of a car between individuals (C2C: Consumer to Consumer), which is provided by key information with which the vehicle can be unlocked and activated in a time-limited manner being distributed to a mobile terminal of a person temporarily borrowing the vehicle in a time period in which the vehicle is not used by the user. For example, there is a delivery service in which a trunk (a luggage room) of the vehicle can be designated as a luggage delivery destination (hereinafter referred to as a “trunk delivery service”), which is provided by distributing key information with which a door (for example, a trunk lid) through which the trunk of the vehicle is accessed can be unlocked in a time-limited manner to a mobile terminal of a deliverer of a delivery company. Therefore, key information with all authorities regarding unlocking of the doors of the vehicle and the activation of the vehicle is likely to be distributed to a mobile terminal of the third party other than the user of the vehicle, and there is room for improvement from the viewpoint of security of the vehicle.

The present disclosure provides a key information management device, a key information management method, and a computer readable medium storing a key information management program capable of improving security of a vehicle when key information is distributed to a mobile terminal of a third party other than a user of the vehicle.

A first aspect of the present disclosure relates to a key information management device. The key information management device includes a key information distribution unit that distributes, to a mobile terminal, key information for unlocking or activating a vehicle by the mobile terminal transmitting a predetermined transmission signal to the vehicle. The key information distribution unit makes an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, different according to the mobile terminal that is a distribution target.

According to the first aspect of the present disclosure, the key information management device can make the authority regarding unlocking or activation of the vehicle imparted to the key information different according to the mobile terminal that is a distribution target. Accordingly, by imparting an authority according to the distribution target, it is possible to improve the security of the vehicle.

In the key information management device according to the first aspect of the present disclosure, when the key information distribution unit distributes the key information to the mobile terminal related to a predetermined service of using the vehicle, the key information distribution unit may make the authority regarding unlocking or activation of the vehicle different according to content of the predetermined service.

According to the first aspect of the present disclosure, the vehicle is not needed to be activated or solely some of the doors of the vehicle may be unlocked according to content of the service, and the key information management device can distribute the key information to the mobile terminal according to the content of the service. Therefore, for example, a situation in which the key information with unneeded authorities is distributed to the mobile terminal of the third party (for example, a borrower of the vehicle of the C2C car sharing service or a deliverer of the trunk delivery service) related to a service other than the user of the vehicle can be avoided. Therefore, the key information management device can realize improvement of the security of the vehicle while maintaining the convenience of providing the service.

In the key information management device according to first aspect of the present disclosure, when the predetermined service is a car sharing service for a general consumer by a company or a key sharing service in which a plurality of users including an owner user of the vehicle receives the key information with the respective mobile terminals, the key information distribution unit may distribute the key information with an authority with which all doors of the vehicle are unlocked and the vehicle is activated, to the mobile terminal.

According to the first aspect of the present disclosure, the key information management device can specifically impart an authority appropriate for the key information to be distributed to the mobile terminal of the borrower of the vehicle according to a car sharing service for general consumers by a company (B2C: Business to Consumer) (hereinafter referred to as a “B2C car sharing service”). The key information management device can specifically impart an authority appropriate for the key information to be distributed to the mobile terminals of the respective regular users according to a sharing service of the key information (hereinafter referred to as a “key sharing service”) in which a plurality of users including an owner user of the vehicle (for example, an owner user and a family member or a friend of the owner user) can receive the key information with the respective mobile terminals.

In the key information management device according to first aspect of the present disclosure, when the predetermined service is a car sharing service among individuals, the key information distribution unit may distribute the key information with an authority with which solely a door for getting on and off among all the doors of the vehicle is unlocked, to the mobile terminal.

According to the first aspect of the present disclosure, personal items of the owner user or the like is likely to be always kept in a luggage room of the vehicle owned by an individual, and the key information management device can specifically impart an authority appropriate for the key information to be distributed to the mobile terminal of the borrower of the vehicle according to the C2C car sharing service.

In the key information management device according to first aspect of the present disclosure, when the predetermined service is a delivery service in which a luggage room of the vehicle is designated as a luggage delivery destination, the key information distribution unit may distribute the key information with an authority with which solely a door through which the luggage room is accessed among all the doors of the vehicle is unlocked, to the mobile terminal.

According to the first aspect of the present disclosure, in the trunk delivery service, it is sufficient that a door (for example, a trunk lid) through which the luggage room is accessed can be unlocked, and the key information management device can specifically impart an appropriate key information according to the trunk delivery service.

In the key information management device according to first aspect of the present disclosure, when the predetermined service is a car sharing service in which the inside of a cabin of the vehicle is used as a trunk room, the key information distribution unit may distribute the key information with an authority with which the vehicle is not activated, to the mobile terminal.

According to the first aspect of the present disclosure, in a car sharing service in which the inside of a cabin of the vehicle is used as a trunk room (hereinafter referred to as a “trunk sharing service”), the borrower does not need to cause the vehicle to travel, and the key information management device can specifically impart an authority appropriate for the key information to be distributed to the mobile terminal of the borrower according to the trunk sharing service.

In the key information management device according to first aspect of the present disclosure, when a user of the mobile terminal that is a distribution target is the user of the vehicle, the key information distribution unit may make an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, different according to whether the user is an owner user of the vehicle or a user other than the owner user of the vehicle.

According to the first aspect of the present disclosure, for example, the owner user may wish to limit an aspect in which the vehicle is used by another user, and the key information management device can make the authority of the key information to be distributed to the mobile terminal different between the owner user and a regular user other than the owner user.

In the key information management device according to first aspect of the present disclosure, when the user of the mobile terminal that is a distribution target is a user of the vehicle, the key information distribution unit may make an authority regarding sharing of the key information with another mobile terminal, which is imparted to the key information, different according to whether the user is an owner user of the vehicle or a user other than the owner user of the vehicle.

According to the first aspect of the present disclosure, the key information distribution unit can make the authority regarding sharing of the key information (for example, the number of times the key information can be shared or the number of persons with which the key information can be shared) different between the owner user of the vehicle and the user other than the owner user. Therefore, for example, the owner user may wish to limit unneeded spreading of the key information by another user of the vehicle, and the key information management device can limit the authority regarding the sharing of the key information to be distributed to the mobile terminal of the regular user other than the owner user.

A second aspect of the present disclosure relates to a key information management method that is executed by a key information management device. The key information management method includes distributing, to a mobile terminal, key information for unlocking or activating a vehicle by the mobile terminal transmitting a predetermined transmission signal to the vehicle. In the distributing of the key information, an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, is made different according to the mobile terminal that is a distribution target.

A third aspect of the present disclosure relates to a computer readable medium storing a key information management program. The key information management program causes an information processing device to execute a key information distribution step of distributing, to a mobile terminal, key information for unlocking or activating a vehicle by the mobile terminal transmitting a predetermined transmission signal to the vehicle. In the key information distribution step, an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, is made different according to the mobile terminal that is a distribution target.

According to the aspects of the present disclosure, it is possible to provide the key information management device, the key information management method, and the computer readable medium storing the key information management program capable of improving security of a vehicle when key information is distributed to a mobile terminal of a third party other than a user of the vehicle.

BRIEF DESCRIPTION OF THE DRAWINGS

Features, advantages, and technical and industrial significance of exemplary embodiments of the disclosure will be described below with reference to the accompanying drawings, in which like numerals denote like elements, and wherein:

FIG. 1 is a diagram illustrating an example of an overall configuration of an authentication key management system;

FIG. 2 is a diagram mainly illustrating an example of a configuration regarding locking and unlocking of a vehicle in the authentication key management system;

FIG. 3 is a diagram mainly illustrating an example of a configuration regarding a key sharing service in the authentication key management system;

FIG. 4 is a diagram mainly illustrating an example of a configuration regarding a trunk delivery service in the authentication key management system;

FIG. 5 is a diagram mainly illustrating an example of a configuration regarding a C2C car sharing service in the authentication key management system;

FIG. 6 is a diagram mainly illustrating an example of a configuration regarding a B2C car sharing service in the authentication key management system;

FIG. 7 is a flowchart schematically showing an example of an authentication key issuance process by a center server; and

FIG. 8 illustrates a table showing an example of a relationship between content of various services and an authority regarding unlocking and activation of the vehicle.

DETAILED DESCRIPTION OF EMBODIMENTS

Hereinafter, modes for carrying out the disclosure will be described with reference to the drawings.

Overall Configuration of Key Information Management System

FIG. 1 is a block diagram illustrating an example of an overall configuration of a key information management system according to the embodiment.

An authentication key management system 1 includes a vehicle 10, a mobile terminal 20, a center server 30, and a service management server 40.

The vehicle 10 can perform wireless communication (hereinafter referred to as “near field communication”) with the mobile terminal 20 at a relatively short distance (a distance that allows communication between the inside of a vehicle cabin and the outside of the vehicle cabin) according to a predetermined communication standard. The vehicle 10 is a target on which locking and unlocking of doors and activation (ignition on) of the vehicle 10 are performed based on transmission signals (an authentication request, a locking request, and an unlocking request to be described below) from the mobile terminal 20. The door of the vehicle 10 may include not only a door for getting on and off, but also a door for a luggage (for example, a trunk lid or a back door. These are hereinafter collectively referred to as a “trunk door”) for accessing a trunk (a luggage room). The ignition on (IG-ON) of the vehicle 10 may include ON of a power supply to an electric motor in the vehicle 10 using the electric motor as a main power source, in addition to startup of an engine in the vehicle 10 using the engine as a main power source. Hereinafter, in the embodiment, description will be given on the premise that the vehicle 10 includes an engine 117 to be described below as a main power source, the activation (IG-ON) of the vehicle 10 corresponds to startup of the engine 117, and stopping (IG-OFF) of the vehicle 10 corresponds to stopping of the engine 117.

The vehicle 10 is communicably connected to the center server 30 over a predetermined communication network (for example, a mobile phone network or an Internet network in which a plurality of base stations is terminations). The vehicle 10 transmits position information to the center server 30, as described below.

The vehicle 10 includes a vehicle 10A carried by an individual and a vehicle 10B carried by a company providing a B2C car sharing service.

The mobile terminal 20 is communicably connected to the center server 30 over a predetermined communication network (for example, a mobile phone network or an Internet network in which a plurality of base stations is terminations). The mobile terminal 20 can unlock or lock the vehicle 10 by acquiring authentication key information (an example of key information. The authentication key information is hereinafter referred to as “authentication key”) distributed from the center server 30 and transmitting the acquired authentication key to the vehicle 10 through relatively short distance wireless communication according to a predetermined manipulation of the user. The mobile terminal 20 may be, for example, a general-purpose mobile phone, a smartphone, or a tablet terminal. As will be described below, a predetermined application program (hereinafter referred to as a “key application”) installed in the built-in processing device 23 is activated, and thereby, the above-described function may be realized. The mobile terminal 20 may be a dedicated mobile terminal specialized for unlocking of the doors of the vehicle 10 and activation of the vehicle 10 by acquiring the authentication key from the center server 30 and using the acquired authentication key. The mobile terminal 20 includes mobile terminals 20Aa to 20Ad corresponding to the vehicle 10A and a mobile terminal 20B corresponding to the vehicle 10B.

The mobile terminal 20Aa is a mobile terminal carried by an owner (hereinafter referred to as an “owner user”) among regular users of the vehicle 10A (hereinafter referred to as “regular users”). The mobile terminal 20Aa may bidirectionally communicate with the mobile terminal 20Ab through wireless communication at a relatively short distance.

The mobile terminal 20Ab is a mobile terminal carried by a regular user other than the owner user of the vehicle 10A (for example, including a family member of the owner user and a close friend of the owner user. The regular user is hereinafter referred to as a “child user”).

The child user may include a user who does not drive the vehicle 10A or a user who cannot drive (for example, an owner user's child under 18 years of age). This is because, for example, when solely a trunk delivery service to be described below is used, the regular user does not need to drive the vehicle 10A.

The mobile terminal 20Ac is carried by a deliverer of a company that provides a trunk delivery service to be described below (hereinafter simply referred to as a “delivery company”). The mobile terminal 20Ac is communicably connected to the center server 30 and a delivery management server 50 to be described below over a predetermined communication network (for example, a mobile phone network or an Internet network in which a plurality of base stations is terminations).

The mobile terminal 20Ad is a mobile terminal carried by a borrower of the vehicle 10A in a C2C car sharing service to be described below. The mobile terminal 20Ad is communicably connected to the center server 30 and a C2C car sharing management server 70 to be described below over the predetermined communication network (for example, a mobile phone network or an Internet network in which a plurality of base stations is terminations).

The mobile terminal 20B is a mobile terminal carried by the borrower of the vehicle 10B in a B2C car sharing service to be described below. The mobile terminal 20B is communicably connected to the center server 30 and a B2C car sharing management server 80 to be described below over the predetermined communication network (for example, a mobile phone network or an Internet network in which a plurality of base stations is terminations).

The center server 30 is communicably connected to the vehicle 10, the mobile terminal 20, and the service management server 40.

The center server 30 (an example of a key information management device) manages issuance of an authentication key of the vehicle 10. For example, the center server 30 issues the authentication key according to a predetermined condition and distributes the authentication key to the mobile terminal 20.

The center server 30 acquires position information of the vehicle 10 from the vehicle 10. Accordingly, the center server 30 can recognize the position of the vehicle 10.

The center server 30 operates the car sharing service for sharing the vehicle 10A among a plurality of regular users including the owner user of the vehicle 10A. Specifically, the center server 30 operates a service for sharing the authentication key of the vehicle 10A that each of a plurality of pre-registered regular users including the owner user can acquire in the mobile terminal 20 of the regular user (the mobile terminals 20Aa and 20Ab) (a key sharing service).

The center server 30 performs a registration process (a use registration process) of allowing the regular user of the vehicle 10A to use a service for using the vehicle 10A (a key sharing service, a trunk delivery service, a C2C car sharing service, or the like). Specifically, the center server 30 registers an authority to distribute the authentication key to the predetermined mobile terminal 20 (hereinafter referred to as an “authentication key arrangement authority”) by a key sharing management unit 327 or a service management server 40 to be described below transmitting an authentication key arrangement request to be described below in order for the regular user of the vehicle 10A to use the service for using the vehicle 10A.

The center server 30 manages a use situation of the vehicle 10A through a plurality of services (that is, a plurality of companies) through a trunk delivery service, a C2C car sharing service, and the like to be described below.

The service management server 40 operates and manages various services that are provided using the vehicle 10. The service management server 40 includes a delivery management server 50 and an electronic commerce (EC) server 60 corresponding to the trunk delivery service, a C2C car sharing management server 70 corresponding to the C2C car sharing service, a B2C car sharing management server 80 corresponding to the B2C car sharing service.

The trunk delivery service may include a delivery service in which a product ordered at an EC site to be described below is a delivery target, and a delivery service in which a product other than the product ordered at the EC site is a delivery target. For example, the trunk delivery service in which the product other than the product ordered at the EC site is the delivery target is a service in which the regular user of the vehicle 10A can change a delivery destination to the trunk of the vehicle 10A when there is a notification indicating that a luggage destined for home is scheduled to be delivered, from the delivery management server 50 to the regular user of the vehicle 10A through an e-mail, an account of social networking service (SNS), or a specific application program activated at mobile terminals 20Aa and 20Ab. Hereinafter, in the embodiment, description will be given while focusing on the trunk delivery service in which the product ordered at the EC site is the delivery target. An operation of each configuration related to the trunk delivery service to be described below can be appropriately applied to an operation of each configuration in the trunk delivery service in which the product other than the product ordered at the EC site is the delivery target.

The delivery management server 50 is communicably connected to the mobile terminal 20Ac and the center server 30 over a predetermined communication network, and performs an operation and management of a distribution system related to the trunk delivery service from receipt of the luggage to the delivery of the luggage to the trunk of the vehicle 10A.

The delivery company operating the delivery management server 50 may provide the regular user of the vehicle 10A with not only the trunk delivery service but also a luggage collection service (hereinafter referred to as a “trunk collection service”) in which the trunk can be designated as the luggage collection source. That is, the delivery management server 50 may perform an operation and management of the trunk collection service in place of the trunk delivery service or in addition to the trunk delivery service. In the above-described case, the luggage that is a luggage collection target may be a product (that is, a product purchased at the EC site) returning to an operating company of the EC site corresponding to the EC server 60 (or a store opened at the EC site) or may be a luggage for delivery not related to the EC site. The trunk collection service may be realized as a collection service when a company (for example, a company for cleaning) that provides a service in a form of temporarily keeping products from a consumer keeps a luggage from the regular user of the vehicle 10A. In the above-described case, a cleaning company or the like may provide a collection management server that operates and manages the trunk collection service, which can be included in the service management server 40, as in the delivery management server 50. That is, the collection management server may be provided, in place of the delivery management server 50 or in addition to the delivery management server 50. A recovery service in which the trunk can be designated as a recovery source of articles that are recovery targets (hereinafter referred to as a “trunk recovery service”) may be provided to the regular user of the vehicle 10A by a company that provides a service in a form of recovering predetermined articles (articles such as waste or a second-hand book desired to be purchased) from consumers (for example, a waste collection company or an antique purchase company). In the above-described case, a recovery management server that operates and manages the trunk recovery service, which may be included in the service management server 40, may be provided by a waste recovery company or the like, similar to the delivery management server 50. That is, the recovery management server may be provided, in place of the delivery management server 50 or in addition to the delivery management server 50.

The EC server 60 is communicably connected to the center server 30 and the delivery management server 50 over a predetermined communication network, and operates a predetermined website (an EC site) for selling products or services. More specifically, the EC server 60 displays the trunk of the vehicle 10A as an option of the delivery destination on an order screen of the EC site, for regular users of the vehicle 10A and a delivery company (a delivery company corresponding to the delivery management server 50) that have been registered in advance. Accordingly, the regular user of the vehicle 10A can have the purchased product delivered to the trunk of the vehicle 10A even when the regular user is absent at home.

The C2C car sharing management server 70 is communicably connected to the mobile terminal 20Ad and the center server 30, and performs an operation and management of the C2C car sharing service such as reception of registration of a date and time when the vehicle 10A can be lent by the owner user, reception of reservation of use from a person who wants to borrow the vehicle 10A, and arrangement of the authentication key of the vehicle 10A. The C2C car sharing management server 70 may operate and manage the C2C trunk sharing service in an aspect in which the inside of the cabin of the vehicle 10A of an individual or the trunk thereof is lent as a temporary luggage storage place, a luggage delivery destination, or the like.

The B2C car sharing management server 80 is communicably connected to the mobile terminal 20B and the center server 30, and performs an operation and management of the B2C car sharing service such as reception of reservation of use of the vehicle 10B, and arrangement of a parking position of the vehicle 10B and the authentication key of the vehicle 10B. The B2C car sharing management server 80 may operate and manage the B2C trunk sharing service in an aspect in which the inside of the cabin of the vehicle 10B or the trunk is lent as a temporary luggage storage space or a luggage delivery destination.

A company car use management server that operates a car sharing service (a company car use management service) in which an employee of a company is a borrower, with the vehicle 10 as a company car of the company being a reservation of use target, may be included in the service management server 40, instead of the B2C car sharing management server 80 or in addition to the B2C car sharing management server 80. In the above-described case, when there is an idle time period of the vehicle 10, which is the company car, the C2C car sharing management server 70 may operate the C2C car sharing service, with the vehicle 10 as a company car being a borrowing target. The delivery management server 50 and the EC server 60 may operate the trunk delivery service in which a delivery destination of a luggage to be delivered to a company can be designated as a trunk of the vehicle 10 that is a company car of the company.

Details of Configuration Regarding Locking, Unlocking, and Activation of Vehicle

A configuration regarding locking, unlocking, and activation of vehicle 10 in the authentication key management system 1 will be described with reference to FIG. 2.

FIG. 2 is a diagram mainly illustrating an example of the configuration regarding locking, unlocking, and activation of the vehicle 10 in the authentication key management system 1. The vehicle 10 includes a locking, unlocking and activation device 11, a key unit 12, a global positioning system (GPS) module 13, and a data communication module (DCM) 14.

The locking, unlocking and activation device 11 is attached to the vehicle 10 and performs unlocking and locking of the doors of the vehicle 10 according to a locking signal and an unlocking signal to be transmitted as radio waves in a radio frequency (RF) band (for example, 300 MHz to 3 GHz) (hereinafter referred to as “RF radio waves”) from the key unit 12. The locking, unlocking and activation device 11 activates the vehicle 10 according to exchange using radio waves in a low frequency (LF) band (for example, 30 Hz to 300 kHz) (hereinafter referred to as “LF radio waves”) and RF radio waves with the key unit using a pressing manipulation of an activation switch (not illustrated) provided in the vehicle cabin of the vehicle 10 as a trigger. The locking, unlocking and activation device 11 includes an LF radio wave transmitter 111, an RF radio wave receiver 112, a collating electronic control unit (ECU) 113, a body ECU 114, a door lock motor 115, an engine ECU 116, and an engine 117 as a driving power source of the vehicle 10.

The locking, unlocking and activation device 11 operates with power supplied from an auxiliary battery (not illustrated) mounted on the vehicle 10.

The LF radio wave transmitter 111 is embedded into, for example, a center console or a door handle in the vehicle cabin, and transmits LF radio waves under the control of the collating ECU 113.

The RF radio wave receiver 112 is provided, for example, in a trim of a luggage room of the vehicle 10 and receives RF radio waves under the control of the collating ECU 113.

The collating ECU 113 is an electronic control unit that controls locking and unlocking of the doors of the vehicle 10 and activation of the vehicle 10 based on exchange of signals with the key unit 12. The collating ECU 113 is realized by any hardware, any software, or a combination of any hardware and any software. For example, the collating ECU 113 is configured mainly of a microcomputer includes a central processing unit (CPU), a random access memory (RAM), a read only memory (ROM), an auxiliary storage device, a real time clock (RTC), and a communication interface. The collating ECU 113 realizes various control processes by executing various programs stored in the ROM or the auxiliary storage device on the CPU. Hereinafter, the same applies to the key ECU 124 to be described below.

The collating ECU 113 receives an unlocking signal and a locking signal transmitted as RF radio waves from the key unit 12 using the RF radio wave receiver 112.

When the collating ECU 113 receives the unlocking signal or the locking signal, the collating ECU 113 performs authentication of a transmission source (the key unit 12) of the unlocking signal or the locking signal based on key information included in the unlocking signal or the locking signal (hereinafter referred to as “internal key information”). For example, when the internal key information registered in an internal memory such as an auxiliary storage device in advance matches the internal key information included in the unlocking signal or the locking signal, the collating ECU 113 determines that the authentication is successful, and when the internal key information registered in the internal memory such as the auxiliary storage device in advance does not match the internal key information included in the unlocking signal or the locking signal, the collating ECU 113 determines that the authentication fails.

For example, the collating ECU 113 may transmit LF radio waves including a “challenge” created in a predetermined method using the internal key information of the internal memory from the LF radio wave transmitter 111 to the key unit 12 and perform challenge response authentication based on a “response” replied from the key unit 12, which is received from the RF radio wave receiver 112.

When the authentication is successful, the collating ECU 113 transmits an unlocking command (upon reception of the unlocking signal) or a locking command (upon reception of the locking signal) to the body ECU 114 via an in-vehicle network such as a controller area network (CAN).

As will be described below, in the unlocking signal, solely some of the doors of the vehicle 10 may be designated as unlocked targets. In the above-described case, the collating ECU 113 designates the door as an unlocked target in the unlocking command. Accordingly, the body ECU 114 can operate solely the door lock motor 115 corresponding to some designated doors and unlock solely some doors.

When the above-described activation switch is pressed, the collating ECU 113 performs authentication of the key unit 12 by exchanging signals with the key unit 12 using the LF radio wave transmitter 111 and the RF radio wave receiver 112.

For example, the collating ECU 113 transmits a request signal in an LF band from the LF radio wave transmitter 111 to the key unit 12 to request reply of the internal key information. When a response signal including the internal key information is received from the key unit 12 by the RF radio wave receiver 112, the collating ECU 113 determines authentication success or authentication failure based on matching between the internal key information registered in the internal memory in advance and the internal key information included in the response signal, as in the case of locking and unlocking the doors.

For example, the collating ECU 113 may perform challenge response authentication, as in the case of locking and unlocking of doors.

When the authentication has succeeded, the collating ECU 113 transmits a startup command of the engine 117 to the engine ECU 116 through the in-vehicle network such as the CAN.

The body ECU 114 is an electronic control unit that performs operation control of the door lock motor 115 that is communicably connected via a one-to-one communication line or the like. The body ECU 114 outputs a control command to cause the door lock motor 115 to perform an unlocking operation according to the unlocking command from the collating ECU 113. The body ECU 114 outputs a control command to cause the door lock motor 115 to perform a locking operation according to the locking command from the collating ECU 113.

The door lock motor 115 is a known electric actuator that unlocks and locks the doors of the vehicle 10 according to the control command from the body ECU 114.

The engine ECU 116 is an electronic control unit that drives and controls the engine 117. Specifically, the engine ECU 116 drives and controls various actuators such as a starter or an injector, which are mounted on the engine 117. When the startup command is input from the collating ECU 113, the engine ECU 116 outputs a control command to various actuators such as a starter or an injector of the engine 117 to start up the engine 117.

The key unit 12 is disposed in the vehicle cabin of the vehicle 10 and transmits the unlocking signal and the locking signal as RF radio waves to the locking, unlocking and activation device 11 according to of the unlocking request and the locking request transmitted from the mobile terminal 20. The key unit 12 performs exchange of signals with the locking, unlocking and activation device 11 according to the signal in the LF band transmitted from the locking, unlocking and activation device 11 when the activation switch provided in the vehicle cabin of the vehicle 10 is pressed. The key unit 12 includes an LF radio wave receiver 121, an RF radio wave transmitter 122, a communication device 123, and a key ECU 124.

The key unit 12 may be disposed at a position (for example, a glove box, or the inside of a center console box) at which it is difficult for users seated on respective seats of the vehicle 10 to visually recognize the key unit 12. The key unit 12 may be fixed or may not be fixed to the vehicle 10. The key unit 12 may be operated by a built-in button battery or the like or may be operated by power supplied from an auxiliary battery mounted on the vehicle 10.

The LF radio wave receiver 121 receives the LF radio waves under the control of the key ECU 124.

The RF radio wave transmitter 122 transmits RF radio waves under the control of the key ECU 124.

The communication device 123 is any device that performs near field communication with the mobile terminal 20 under the control of the key ECU 124. The communication device 123 may be, for example, a BLE communication module that performs communication with the mobile terminal 20 in compliance with a Bluetooth (registered trademark) low energy (BLE) communication standard. Hereinafter, description will be given on the premise that a communication standard adopted in the communication device 123 conforms to BLE communication.

The communication device 123 may be a communication device conforming to a short-range communication standard having a very short communicable distance, such as a near field communication (NFC) standard. In the above-described case, the communication device 123 may be built, for example, at a position (for example, the inside of the door handle) close to a body surface of the vehicle 10 outside the vehicle cabin. Accordingly, the key unit 12 (the key ECU 124) can communicate with the mobile terminal 20 outside the vehicle cabin even when the communicable distance of the communication device 123 is very short.

The key ECU 124 is an electronic control unit that performs a control process of transmitting a locking signal and an unlocking signal to the locking, unlocking and activation device 11 according to the unlocking request and the locking request received from the mobile terminal 20.

The key ECU 124 receives an authentication request including an authentication key associated with the key unit 12 from the mobile terminal 20 via the communication device 123.

When the authentication request including the authentication key associated with the key unit 12 is received from the mobile terminal 20, the key ECU 124 performs authentication of the mobile terminal 20 based on the authentication key. When the authentication has been successful, the key ECU 124 restores the internal key information stored in an internal memory such as an auxiliary storage device to a usable state. The internal key information is stored in a state that the internal key information cannot be used for authentication in the locking, unlocking and activation device 11, for example, due to a state in which the internal key information is not accessible or a state in which the internal key information has been encrypted. Therefore, when the authentication of the mobile terminal 20 has been successful, the key ECU 124, for example, performs changing of an authority to access the internal memory for changing the key information to an accessible state, or decodes an encrypted internal key information based on the authentication key. Accordingly, the key ECU 124 can access the internal key information which is not normally accessible to transmit an unlocking signal or a locking signal including the internal key information to the locking, unlocking and activation device 11 or transmit an unlocking signal or a locking signal including decoded internal key information to the locking, unlocking and activation device 11. Therefore, the locking, unlocking and activation device 11 can perform appropriate authentication based on the internal key information included in the unlocking signal and the locking signal. Even when a situation in which a malicious third party illegally obtains the key unit 12 occurs, the internal key information in the key unit 12, for example, is not accessible or is encrypted, occurrence of theft of the vehicle 10 can be suppressed.

The key ECU 124 receives the unlocking request and the locking request from the mobile terminal 20 via the communication device 123. When the authentication of the mobile terminal 20 is successful (specifically, a state in which the BLE communication has been established is kept after the authentication of the mobile terminal 20 has been successful) and the key ECU 124 has received the unlocking request or the locking request from the mobile terminal 20, the key ECU 124 transmits the unlocking signal or the locking signal including locking and unlocking key information to the locking, unlocking and activation device 11 via the RF radio wave transmitter 122.

Accordingly, unlocking or locking of the doors of the vehicle 10 is realized after an authentication process in the locking, unlocking and activation device 11.

As described above, the key ECU 124 performs exchange of signals with the locking, unlocking and activation device 11 according to a signal in the LF band transmitted from the locking, unlocking and activation device 11 when the activation switch provided in the vehicle cabin of the vehicle 10 is pressed.

For example, when the request signal is received from the locking, unlocking and activation device 11 by the LF radio wave receiver 121, the key ECU 124 transmits a response signal including the internal key information stored in the internal memory or the like to the locking, unlocking and activation device 11 via the RF radio wave transmitter 122.

For example, when the LF radio waves including the “challenge” are received from the locking, unlocking and activation device 11 by the LF radio wave receiver 121, the key ECU 124 generates a “response” based on the internal key information and transmits the response to the locking, unlocking and activation device 11 via the RF radio wave transmitter 122.

Accordingly, after the authentication process in the locking, unlocking and activation device 11, the startup of the engine 117 is realized.

An authority regarding a function of locking, unlocking, or activating the vehicle 10 imparted by the center server 30 may be defined in the authentication key.

For example, when the authentication key has solely the authority to unlock some of the doors of the vehicle 10, the key ECU 124 transmits an unlocking signal including information for designating the door to be unlocked to the key unit 12 via the RF radio wave transmitter 122. Accordingly, solely some of the doors of the vehicle 10 can be unlocked as described above.

For example, when the authentication key does not have the authority to activate the engine 117, the key ECU 124 may not perform exchange with the locking, unlocking and activation device 11 even when the signal in the LF band from the locking, unlocking and activation device 11 based on a pressing manipulation of the activation switch is received by the LF radio wave receiver 121. Accordingly, it is possible to prohibit the activation of the engine 117 according to the authority of the authentication key.

The GPS module 13 receives GPS signals transmitted from three or more satellites and, preferably, four or more satellites over the vehicle 10, and measures a position of the vehicle 10. The GPS module 13 is communicably connected to the DCM 14 or the like via a one-to-one communication line or an in-vehicle network such as a CAN, and the measured position information of the vehicle 10 is input to the DCM 14 or the like.

The DCM 14 is a communication device that bidirectionally communicates with the center server 30 over a predetermined communication network. The DCM 14 transmits current position information of the vehicle 10 input from the GPS module 13 to the center server 30 at a predefined timing or according to a request from the center server 30, or the like. The DCM 14 transmits, to the center server 30, various types of vehicle information (for example, information indicating that unlocking of the door of the vehicle 10 or activation of the vehicle 10 is performed based on the authentication key) that can be acquired over an in-vehicle network such as a CAN at a predefined timing or according to a request from the center server 30 or the like.

The mobile terminal 20 includes a communication device 21, a communication device 22, a processing device 23, and a touch panel display (hereinafter simply referred to as a “display”) 24.

The communication device 21 is any device that performs near field communication with the mobile terminal 20 according to the same communication standard as that of the communication device 123. As described above, in the case of the embodiment, the communication device 21 is, for example, a BLE communication module.

The communication device 22 is any device that communicates with the center server 30, the service management server 40, or the like over a predetermined communication network. The communication device 22 is a mobile communication module corresponding to a communication standard such as Long Term Evolution (LTE), 4th Generation (4G), or 5th Generation (5G).

The processing device 23 performs various control processes in the mobile terminal 20. The functions of the processing device 23 may be realized by any hardware, any software, or a combination of any hardware and any software, and includes for example, a CPU, a RAM, a ROM, an auxiliary storage device, an RTC, and various interfaces for communication. The processing device 23 includes, for example, a communication processing unit 231, a communication processing unit 232, an authentication key acquisition unit 233, an authentication request unit 234, and a locking and unlocking request unit 235 as functional units that are realized by executing one or more programs stored in the ROM or the auxiliary storage device on the CPU. The processing device 23 includes, for example, a storage unit 230 that is realized as a storage area in the auxiliary storage device, and a process of storing various pieces of data in the storage unit 230 is realized by a predetermined program stored in the ROM or the auxiliary storage device.

The communication processing unit 231 performs bidirectional near field communication with the key unit 12 using the communication device 21 and performs transmission and reception of various signals.

The communication processing unit 232 connects to the predetermined communication network using the communication device 22 and transmits and receives various signals such as a data signal or a control signal to and from the center server 30, the service management server 40, and the like.

The authentication key acquisition unit 233 acquires the authentication key from the center server 30, for example, according to a predetermined manipulation of the user with respect to a predetermined graphical user interface (GUI) displayed on the display 24, and stores the acquired authentication key in the storage unit 230. Hereinafter, the description will be given on the premise that various manipulations with respect to the mobile terminal 20 are performed by a manipulation with respect to the GUI displayed on the display 24 in conjunction with the operation of the key application.

For example, the authentication key acquisition unit 233 of the mobile terminal 20Aa transmits an authentication key acquisition request to the center server 30 via the communication processing unit 232. Accordingly, the center server 30 receives the authentication key acquisition request, and issues the authentication key when the center server 30 determines that the authentication key acquisition request is a regular authentication key acquisition request. The authentication key acquisition unit 233 acquires the authentication key distributed from the center server 30 via the communication processing unit 232.

For example, the authentication key acquisition unit 233 of the mobile terminal 20Ab acquires the authentication key distributed from the center server 30 to the mobile terminal 20Ab via the communication processing unit 232 according to a key sharing request (to be described below) transmitted from the mobile terminal 20Aa to the center server 30.

The authentication key acquisition unit 233 of the mobile terminal 20Ab may transmit the authentication key acquisition request by itself to the center server 30 via the communication processing unit 232. In the above-described case, when the center server 30 receives the authentication key acquisition request from the mobile terminal 20Ab, the center server 30 may perform an inquiry about whether or not to permit distribution of the authentication key to the mobile terminal 20Aa of the owner user.

For example, the authentication key acquisition unit 233 of each of the mobile terminals 20Ac, 20Ad, and 20B transmits an authentication key acquisition request to the delivery management server 50, the C2C car sharing management server 70, and the B2C car sharing management server 80 to request acquisition of the authentication key. Accordingly, the delivery management server 50, the C2C car sharing management server 70, and the B2C car sharing management server 80 transmit an authentication key arrangement request to the center server 30 according to reception of the authentication key acquisition request, and the center server 30 issues the authentication key according to receipt of the authentication key arrangement request. The authentication key acquisition unit 233 acquires an authentication key that is distributed from the center server 30 via the communication processing unit 232.

The authentication key acquisition unit 233 of the mobile terminals 20Ac, 20Ad, and 20B may transmit the authentication key acquisition request to the center server 30 via the communication processing unit 232. In the above-described case, the center server 30 may perform an inquiry of the delivery management server 50, the C2C car sharing management server 70, and the B2C car sharing management server 80 to determine whether or not the authentication key acquisition request is a regular authentication key acquisition request.

The authentication request unit 234 transmits an authentication request to the key unit 12 of the vehicle 10 via the communication processing unit 231 to request authentication of the mobile terminal 20 serving as a remote manipulation unit for locking and unlocking the doors of the vehicle 10. For example, when the authentication request unit 234 finds a key unit corresponding to the authentication key, and specifically, when an advertising packet corresponding to the key unit 12 is received by the communication processing unit 231, the authentication request unit 234 may transmit the authentication request to the key unit 12. For example, the authentication request unit 234 may transmit the authentication request to the key unit 12 according to a predetermined manipulation by the user.

The locking and unlocking request unit 235 transmits an unlocking request including an authentication key or a locking request including the authentication key to the key unit 12 via the communication processing unit 231 according to the predetermined manipulation by the user. Accordingly, even when the unlocking request or the locking request has been transmitted to the key unit 12 before the authentication request is transmitted by the authentication request unit 234, locking and unlocking of the door of the vehicle 10 based on the authentication process in the key unit 12 can be realized. For example, an unlocking button for requesting unlocking of the vehicle 10 and a locking button for requesting locking of the vehicle 10 may be drawn in a GUI serving as a manipulation screen of the display 24, a locking request may be transmitted when the locking button is touched, and an unlocking request may be transmitted when the unlocking button is touched. The locking request and the unlocking request may be transmitted by a manipulation with respect to a predetermined manipulation unit by hardware provided in the mobile terminal 20.

For example, the functions of the authentication key acquisition unit 233, the authentication request unit 234, and the locking and unlocking request unit 235 may be available to the user by a predetermined application program installed in the ROM of the processing device 23, the auxiliary storage device, or the like being activated. Hereinafter, the description will be given on the premise that the functions of the authentication key acquisition unit 233, the authentication request unit 234, and the locking and unlocking request unit 235 of the processing device 23 are available to the user by the key application already installed in the processing device 23 (the auxiliary storage device or the ROM) being activated.

The center server 30 includes a communication device 31 and a processing device 32.

The functions of the center server 30 may be shared and realized by a plurality of servers. Hereinafter, the same applies to the delivery management server 50, the EC server 60, the C2C car sharing management server 70, and the B2C car sharing management server 80.

The communication device 31 is any device that performs bidirectional communication with each of the vehicle 10, the mobile terminal 20, and the service management server 40 over a predetermined communication network.

The processing device 32 (an example of the information processing device) performs various control processes in the center server 30. The functions of the processing device 32 may be realized by any hardware, any software, or a combination of any hardware and any software, and the processing device 32 is mainly configured of one or a plurality of server computers including, for example, a CPU, a RAM, a ROM, an auxiliary storage device, an RTC, and a predetermined communication interface. Hereinafter, the same applies to processing devices 52, 62, 72, 82 to be described below of the delivery management server 50, the EC server 60, the C2C car sharing management server 70, and the B2C car sharing management server 80. The processing device 32 includes, for example, a communication processing unit 321, a condition determination unit 322, and an authentication key issuance unit 323 as functional units that are realized by executing one or more programs stored in the ROM or the auxiliary storage device on the CPU. The processing device 32 includes, for example, a storage unit 320 that is realized as a storage area defined in an auxiliary storage device of a server computer or an external storage device connected to the server computer, and a process in which various pieces of data are stored in the storage unit 320 is realized by a program stored in the ROM or the auxiliary storage device. Hereinafter, the same applies to the storage units 520, 620, 720, and 820 to be described below.

The communication processing unit 321 controls the communication device 31 to perform exchange of various signals such as control signals and information signals with the vehicle 10, the mobile terminal 20, and the service management server 40.

The condition determination unit 322 determines whether or not the authentication key acquisition request or the authentication key arrangement request is a regular authentication key acquisition request or a regular authentication key arrangement request according to reception of an authentication key acquisition request from the mobile terminal 20 or an authentication key arrangement request from the service management server 40 received by the communication processing unit 321.

When the condition determination unit 322 determines that the authentication key acquisition request or the authentication key arrangement request is the regular one, the authentication key issuance unit 323 (an example of the key information distribution unit) specifies a specification of the authentication key to be issued and issues an authentication key corresponding to the specified specification. For example, the authentication key issuance unit 323 specifies the vehicle 10 that is a target of locking or unlocking using the authentication key or the key unit 12 corresponding to the vehicle 10. For example, the authentication key issuance unit 323 specifies the authority of the authentication key regarding a period of time in which the authentication key is valid (available) and the number of times the authentication key is available. For example, the authentication key issuance unit 323 specifies the authority of the authentication key regarding the unlocking or activation of the vehicle 10, such as lockable or unlockable doors and whether or not the vehicle 10 can be activated. For example, the authentication key issuance unit 323 specifies the authority of the authentication key regarding the temporary key sharing, such as whether or not the authentication key can be shared with another mobile terminal 20 through a temporary key sharing to be described below, a period of time in which the authentication key can be shared with the other mobile terminal 20, and the number of times the authentication key can be shared with the other mobile terminal 20. Details of a method of specifying various authorities in the authentication key issuance unit 323 will be described below (see FIGS. 7 and 8). Hereinafter, the authority of the authentication key regarding the period of time in which the authentication key is available, the number of times the authentication key is available, and the like, the authority of the authentication key regarding the unlocking or activation of the vehicle 10, and the authority of the authentication key regarding the temporary key sharing are collectively simply referred to as “various authorities of the authentication key”. The authentication key issuance unit 323 distributes the authentication key issued to the mobile terminal 20 that is a target via the communication processing unit 321.

Details of Configuration Regarding Key Sharing Service

A configuration regarding the key sharing service in the authentication key management system 1 will be described with reference to FIG. 3.

FIG. 3 is a diagram mainly illustrating an example of a configuration regarding the key sharing service in the authentication key management system 1. Hereinafter, a configuration regarding the key sharing service in the authentication key management system 1 will be mainly described with reference to FIG. 3, and duplicate description on the configuration overlapping the configuration regarding locking, unlocking, and activation of the vehicle 10 described above will be omitted as much as possible. Hereinafter, the same applies to description of FIGS. 4 to 6.

The processing device 23 of the mobile terminal 20Aa carried by the owner user of the vehicle 10A includes the communication processing unit 231, the communication processing unit 232, the authentication key acquisition unit 233, the authentication request unit 234, and the locking and unlocking request unit 235, as described above. The processing device 23 of the mobile terminal 20Aa further includes a user registration request unit 236, a service use registration request unit 237, a service use situation request unit 238, and a key sharing request unit 239.

In the embodiment, the description will be given on the premise that the functions of the user registration request unit 236, the service use registration request unit 237, the service use situation request unit 238, and the key sharing request unit 239 of the mobile terminal 20Aa are available to the owner user by the key application being activated and the user authentication based on bidirectional communication with the center server 30 being successful. The description will be given on the premise that the user authentication is performed by the center server 30 based on an identification (ID) defined for the owner user (hereinafter referred to as “owner user ID”) in advance and a password corresponding to the owner user ID.

The user registration request unit 236 requests the center server 30 to register the regular user of the vehicle 10A that uses various services (the key sharing service, the trunk delivery service, the C2C car sharing service, and the like) for using the vehicle 10A, according to a predetermined manipulation by the owner user. For example, the user registration request unit 236 transmits a user registration request including an owner user ID and a password and attribute information (for example, a name, age, and relationship with the owner user) for specifying a child user who is a registration target to the center server 30 via the communication processing unit 232.

When a notification indicating that registration of the child user has been completed (user registration completion notification) is received from the center server 30 by the communication processing unit 232, the user registration request unit 236 stores an ID (hereinafter referred to as a “child user ID”) and a password of the child user included in the user registration completion notification in the storage unit 230. In the above-described case, the user registration request unit 236 may transmit the child user ID and the password to the mobile terminal 20Ab carried by the registered child user via the communication processing unit 231 according to a predetermined manipulation by the owner user.

The service use registration request unit 237 requests the center server 30 to perform registration of use of various services for using the vehicle 10A by the regular user of the vehicle 10A according to a predetermined manipulation by the owner user. That is, the service use registration request unit 237 requests registration of the authentication key arrangement authority of the key sharing management unit 327 or the service management server 40 corresponding to various services for allowing regular users of the vehicle 10A to use various services, as described above. For example, the service use registration request unit 237 transmits a service use registration request including the owner user ID and the password, the information for specifying the vehicle 10A to be used for various services, the information for specifying the service that is a target, and the ID of the regular user who uses the target service (the owner user ID or the child user ID) to the center server 30 via the communication processing unit 232. Hereinafter, the owner user ID and the child user ID may be collectively referred to as a “regular user ID”. Accordingly, the service use registration request unit 237 can register a child user who use the key sharing service in the center server 30.

The service use registration request unit 237 receives a notification that the use registration of the service based on the service use registration request has been completed from at least one of the center server 30 and the service management server 40 through the communication processing unit 232. The service use registration request unit 237 causes the display 24 to display an indication that the use registration of the specific service by the regular user of the vehicle 10A based on the predetermined manipulation by the owner user has been completed. Accordingly, the owner user can recognize that the use registration of the specific service by the regular user has been completed.

The service use situation request unit 238 requests the center server 30 to provide information on the use situation of various services (service use situation information) including the key sharing service by the regular user of the vehicle 10A for which the use registration has been completed in a form corresponding to the owner user ID according to a predetermined manipulation by the owner user. For example, the service use situation request unit 238 transmits a service use situation request including the owner user ID and the password to the center server 30 via the communication processing unit 232. When the service use situation information received from the center server 30 by the communication processing unit 232 is received, the service use situation request unit 238 displays the service use situation information on the display 24. Accordingly, the owner user can centrally recognize the information on the use situation of each service by each of the regular users registered for use in the center server 30 in an aspect in which the information is linked to the owner user ID.

The key sharing request unit 239 requests the center server 30 to distribute the authentication key for performing locking, unlocking or activating of the vehicle 10A to the child user registered for use in the key sharing service according to a predetermined manipulation by the owner user. For example, the key sharing request unit 239 transmits a key sharing request including an owner user ID and a password, information on the vehicle 10A that is a locking and unlocking target by the authentication key, and information (for example, a child user ID) on the child user that is a distribution (share) target of the authentication key to the center server 30 via the communication processing unit 232. When the key sharing request unit 239 transmits the key sharing request, use period information (for example, a date and time of use start and a date and time of use end) regarding a period of time in which the authentication key set and distributed by a predetermined manipulation by the owner user is available may be included in the key sharing request. The key sharing request may include authority information on various authorities of the authentication key, such as an authority of the authentication key regarding a period of time in which the authentication key is available or the number of times the authentication key is available, an authority of the authentication key regarding the unlocking or activation of the vehicle, and an authority of the authentication key regarding temporary key sharing to be described below, which can be designated according to the predetermined manipulation by the owner user. Accordingly, as described above, when the authentication key available at the same time is shared among the mobile terminals 20, the owner user can appropriately set authority information such that use of the vehicle 10A by a user other than the owner user can be limited. Therefore, security of the vehicle 10A can be improved.

The key sharing request unit 239 may set the mobile terminals 20 (that is, at least one of the mobile terminals 20Aa and 20Ab) of a plurality of regular users of the vehicle 10A as distribution targets and request the center server 30 to distribute the authentication key of which the periods of time in which the authentication key is available overlap according to the predetermined manipulation by the owner user. That is, in the key sharing request, the regular users that are authentication key distribution targets may be designated, or the owner users may be included among the regular users. In the key sharing request, the period of time in which the authentication key is available for each of the designated regular users may overlap. Accordingly, the authentication key of the vehicle 10A available at the same time can be shared by the regular users. Therefore, for example, when a plurality of persons gets on the vehicle 10A together and go out for travel, camp, or the like, each of passengers can lock or unlock the vehicle 10A without lending and borrowing the mobile terminal 20 in which the authentication key has been stored, and therefore, convenience for users can be improved.

Even when the key sharing request unit 239 may share the distributed authentication key with another mobile terminal 20 (that is, the mobile terminal 20 in which the key application is installed) according to a predetermined manipulation by the owner user (hereinafter, a sharing aspect of the authentication key will be referred to as “temporary key sharing”). In the above-described case, the other mobile terminal 20 may be the mobile terminal 20Ab of the child user or may be the mobile terminal 20 of a user other than the child user, that is, a user temporarily using the vehicle 10A.

For example, the key sharing request unit 239 transmits the authentication key (more specifically, a copy of the authentication key) to another mobile terminal 20 via the communication processing unit 231. Accordingly, the owner user of the vehicle 10A can share the authentication key with the other user even when a plurality of persons suddenly get on the vehicle 10A together and go out for traveling or the like. It is possible to share the authentication key available at the same time to the other mobile terminal 20 directly from the mobile terminal 20Aa. Accordingly, for example, even when the mobile terminal 20Aa is at a place at which a communication situation in a wireless mobile communication network is poor or out of a communication range, the owner user of the vehicle 10A can share the authentication key with the other user.

In the above-described case, the key sharing request unit 239 may transmit the authentication key of which the authority regarding the period of time in which the authentication key is available or the number of times the authentication key is available or the authority regarding the unlocking or activation of the vehicle 10A, which is set based on the predetermined manipulation by the owner user or which is defined in advance, has been restricted, to the other mobile terminal 20 via the communication processing unit 231. Specifically, for example, an authentication key with an authority to limit the period of time in which the authentication key is available or the number of times the authentication key is available to, for example, 30 minutes or once, or an authentication key with an authority, for example, solely to lock and unlock doors for getting on and off the vehicle 10A or prohibit activation of the vehicle 10A may be transmitted to another mobile terminal 20. Hereinafter, the same applies to the case of temporary key sharing that is performed via the center server 30. Accordingly, security of the vehicle 10A due to the temporary key sharing can be improved.

When the temporary key sharing is performed, the key sharing request unit 239 may cause the authentication key to be distributed from the center server 30 to the other mobile terminal 20, as in the case of a normal key sharing. In the above-described case, the key sharing request unit 239 may transmit a temporary key sharing request including information (for example, an issued ID embedded in the authentication key) for specifying the distributed authentication key and information for designating the other mobile terminal 20 that is a distribution target to the center server 30 via the communication processing unit 232, to cause the authentication key of the vehicle 10A to be distribute from the center server 30 to the other mobile terminal 20.

For example, when the other mobile terminal 20 is the mobile terminal 20Ab of the child user, the key sharing request unit 239 may transmit a temporary key sharing request including the child user ID to the center server 30 via the communication processing unit 232.

For example, the key sharing request unit 239 acquires predetermined identification information (for example, a quick response (QR) code (registered trademark) corresponding to the user of another mobile terminal 20 registered as a user installing the key application in the center server 30) from the other mobile terminal 20 via the communication processing unit 231. The key sharing request unit 239 may transmit a temporary key sharing request for designating another mobile terminal 20 specified based on the identification information as a distribution target, to the center server 30.

The mobile terminal 20Aa may acquire the identification information using another method. For example, the mobile terminal 20Aa may acquire identification information corresponding to the user of the other mobile terminal 20 in an aspect in which the identification information displayed on the display 24 of the other mobile terminal 20 is recognized using a mounted camera function. For example, the mobile terminal 20Aa may acquire the identification information transmitted from the user of the other mobile terminal 20 to a mail address or an account of an SNS of the owner user.

For example, according to a predetermined manipulation by the owner user, the key sharing request unit 239 transmits a candidate terminal information request for requesting a candidate terminal information on a candidate terminal that is a candidate for the other mobile terminal 20 present around a current position of the mobile terminal 20Aa to the center server 30 via the communication processing unit 232. When the candidate terminal information is received from the center server 30 by the communication processing unit 232, the key sharing request unit 239 causes the display 24 to display the candidate terminal information. When the candidate terminal information is displayed on the display 24, information for specifying a candidate terminal in which a specific manipulation or operation is performed among candidate terminals may be included in the candidate terminal information replied from the center server 30. Accordingly, the owner user of the vehicle 10A can specify another mobile terminal 20 from among the candidate terminals displayed on the display 24 of the mobile terminal 20Aa by the user of the other mobile terminal 20 as a key sharing target performing a specific manipulation or operation with respect to the mobile terminal 20. The key sharing request unit 239 may transmit a temporary key sharing request for designating the other mobile terminal 20 specified from among the candidate terminals as a distribution target to the center server 30, according to a predetermined manipulation by the owner user.

The key sharing request unit 239 may activate the key application according to a predetermined manipulation by the owner user to transmit link information according to a uniform resource locator (URL) scheme for allowing the other mobile terminal 20 to acquire the authentication key from the center server 30 (hereinafter, simply referred to as “link information”) to a mail address or an account of an SNS of the user of the other mobile terminal 20 via the communication processing unit 232. In the above-described case, the key sharing request unit 239 transmits a temporary key sharing request for designating the acquired authentication key to the center server 30 via the communication processing unit 232 according to a predetermined manipulation by the owner user, and acquires the link information replied from the center server 30 according to the temporary key sharing request. Accordingly, the key sharing request unit 239 can cause the authentication key to be distributed from the center server 30 to the other mobile terminal 20.

The temporary key sharing can be executed from the mobile terminal 20Ab of the child user to which the authentication key has already been distributed. That is, a function regarding the temporary key sharing in the key sharing request unit 239 may be included in a function of the key application that is installed in the processing device 23 of the mobile terminal 20Ab of the child user. Accordingly, it is not needed to lend and borrow the mobile terminal 20Ab of the child user who has acquired the authentication key even when a plurality of persons including no owner user get on the vehicle 10A together, and convenience for the child user of the vehicle 10A can be further improved. Hereinafter, description will be given on the premise that the temporary key sharing can be performed from the mobile terminal 20Ab of the child user.

The processing device 32 of the center server 30 includes the communication processing unit 321, the condition determination unit 322, the authentication key issuance unit 323, and the storage unit 320, as described above. The processing device 32 of the center server 30 further includes a position information management unit 324, a schedule management unit 325, a registration management unit 326, and a key sharing management unit 327.

When the authentication key acquisition request has been received from the mobile terminals 20Aa and 20Ab by the communication processing unit 321, the condition determination unit 322 performs authentication based on the regular user ID and the password included in the authentication key acquisition request. For example, the condition determination unit 322 collates the regular user ID and password registered in the storage unit 320 with the regular user ID and password included in the authentication key acquisition request, and determines that the authentication is successful, that is, the authentication key acquisition request is a regular authentication key acquisition request when both match.

The condition determination unit 322 determines whether or not the authentication key arrangement request sent from the key sharing management unit 327 to be described below is a regular authentication key arrangement request. For example, when the authentication is successful based on authentication information (for example, the ID and the password) included in the authentication key arrangement request from the key sharing management unit 327, the condition determination unit 322 may determine that the authentication key arrangement request is a regular authentication key arrangement request.

When the condition determination unit 322 determines that the authentication key acquisition request or the authentication key arrangement request is a regular authentication key acquisition request or a regular authentication key arrangement request, the authentication key issuance unit 323 issues the authentication key and distributes the authentication key to the mobile terminal 20 via the communication processing unit 321.

The position information management unit 324 acquires the position information from the vehicle 10A via the communication processing unit 321 and monitors the position information of the vehicle 10A in real time to recognize a movement situation of the vehicle 10A. Accordingly, for example, the position information management unit 324 can notify the owner user of the position information of the vehicle 10A lent to the child user via the communication processing unit 321. For example, the position information management unit 324 can notify the mobile terminal 20Ab of the child user of information such as whether or not the vehicle 10A scheduled to be lent to the child user is directed to a designated position (for example, home) or a reference for returning, via the communication processing unit 321.

The schedule management unit 325 manages the use situation of the vehicle 10A regarding various services. For example, the schedule management unit 325 periodically acquires a use schedule of the vehicle 10 by the key sharing service and, specifically, information on a date and time on which the authentication key distributed by the key sharing service is available, from the key sharing management unit 327. The schedule management unit 325 acquires the use schedule of the vehicle 10A by each of the trunk delivery service and the C2C car sharing service from the delivery management server 50 and the C2C car sharing management server 70 via the communication processing unit 321. The schedule management unit 325 generates information on the use schedule of the vehicle 10A (vehicle use schedule information) over a plurality of services based on the acquired use schedule of the vehicle 10A regarding the various services, and updates the vehicle use schedule information stored in the storage unit 320.

The registration management unit 326 performs registration of the regular user (the child user) who uses various services according to the user registration request received from the mobile terminal 20Aa of the owner user by the communication processing unit 321. For example, the registration management unit 326 collates the owner user ID and password included in the user registration request from the mobile terminal 20Aa with the owner user ID and password stored in the storage unit 320, and determines that the user registration request is a regular user registration request when both match. That is, the registration management unit 326 determines that the authentication is successful. The registration management unit 326 registers the child user ID included in the regular user registration request in a user service registration information database (DB) in the storage unit 320 as the regular user who can use various services.

The registration management unit 326 performs registration of use of various services by the regular user of the vehicle 10A according to the service use registration request received from the mobile terminal 20Aa of the owner user by the communication processing unit 321. That is, according to the service use registration request, the registration management unit 326 performs registration of an authentication key arrangement authority of the key sharing management unit 327 or the service management server 40 corresponding to various services to allow the user of the vehicle 10A to use various services. For example, the registration management unit 326 performs the same authentication process as described above based on the owner user ID and the password included in the service use registration request from the mobile terminal 20Aa to determine whether the service use registration request is a regular service use registration request. When the service use registration request is a regular service use registration request, the registration management unit 326 determines whether or not the regular user ID included in the service use registration request has already been registered in the user service registration information DB. When the regular user ID included in the service use registration request has already been registered in the user service registration information DB, the registration management unit 326 registers the service of a target specified by the service use registration request in the user service registration information database (DB) in the storage unit 320 as a service available to the regular user corresponding to the regular user ID.

Specifically, the registration management unit 326 constructs a user service registration information DB in an aspect in which service-specific information for specifying a target service, vehicle-specific information for specifying the vehicle 10A, a regular user ID for specifying a regular user who uses the service, and service link information in which the vehicle-specific information corresponding to the vehicle 10A and the regular user ID are associated with the target service is linked to the owner user ID.

The service-specific information is, for example, a service ID that is defined for each service. Specifically, for example, when there is a plurality of companies providing the C2C car sharing service, a unique service ID is defined for each of the companies. For example, when the same company provides a plurality of C2C car sharing services, a unique ID is defined for each of the services provided by the same company. When a trunk delivery service is provided by a combination of a plurality of delivery companies and a plurality of EC companies, a unique service ID may be defined for each combination of the delivery company and the EC company, and the target service may be specified by a combination of the unique service ID defined for each of the delivery companies and a unique service ID defined for each of the EC companies.

The vehicle-specific information may be any information as long as the information is able to specify the vehicle 10A that is a target of locking, unlocking, or activation using the authentication key. For example, the vehicle-specific information may be identification information such as a vehicle ID or a vehicle identification number (VIN), which is defined for each vehicle 10A. For example, the vehicle-specific information may be identification information such as a key unit ID, which is defined for each in-vehicle device related to locking, unlocking, or activation of the doors based on the authentication key mounted on the vehicle 10A such as the key unit 12. Hereinafter, description will be given on the premise that the vehicle-specific information is the key unit ID.

The service link information is information needed for the key sharing management unit 327, the delivery management server 50, the EC server 60, and the C2C car sharing management server 70 managing various services to transmit the authentication key arrangement request to thereby cause the authentication key issuance unit 323 to issue the authentication key and distribute the authentication key to the mobile terminal 20 that is a target. That is, the authentication key issuance unit 323 can specify the vehicle 10A that is a target of locking, unlocking, or activation using the authentication key and issue an appropriate authentication key by receiving the authentication key arrangement request including the service link information from the key sharing management unit 327, the delivery management server 50, the EC server 60, and the C2C car sharing management server 70.

The service link information may be any information as long as the target service is associated with the vehicle 10A and the user who uses the service in the center server 30. For example, the service link information may be a login ID of the regular user at a web site for users of various services corresponding to the key sharing management unit 327, the delivery management server 50, the EC server 60, and the C2C car sharing management server 70 (hereinafter referred to as “service login ID” for convenience). In the above-described case, the service use registration request unit 237 of the mobile terminal 20Aa transmits the service use registration request including the service login ID of the regular user that is a registration target corresponding to the various services to the center server 30 via the communication processing unit 232. When the regular user that is a registration target corresponding to various services does not acquire the service login ID, the processing device 23 of the mobile terminal 20Aa may activate a predetermined browser and acquire the service login ID of a website of various services. Accordingly, when the user (the regular user of the vehicle 10A) logs in to the website at the time of requesting a service that is a target, the delivery management server 50 or the C2C car sharing management server 70 can recognize the service login ID corresponding to the service link information and easily arrange the authentication key regarding the service provision. Hereinafter, description will be given on the premise that the service link information on the trunk delivery service and the C2C car sharing service is the service login ID.

In the case of regular users who regularly use a plurality of vehicles 10A, the center server 30 can specify the regular user solely by using the service login ID, but cannot specify the vehicle 10A. Therefore, information for indirectly specifying the vehicle 10A (for example, information obtained by encrypting the vehicle-specific information using a predetermined scheme) in addition to the service login ID may be included in the service link information.

When the registration of use of various services has been completed, registration management unit 326 notifies the mobile terminals 20Aa and 20Ab corresponding to the regular users that are registration targets that the registration of use of various services has been completed, via communication processing unit 321. When the registration of use of various services has been completed, the registration management unit 326 transmits a service use registration completion notification including the service link information to the key sharing management unit 327 or the service management server 40 that performs an operation and management of a service that is a registration target.

A notification that the registration of use of various services for the mobile terminals 20Aa and 20Ab has been completed may be transmitted from the service management server 40 that has received the service use registration completion notification.

When the service use situation request has been received from the mobile terminal 20Aa by the communication processing unit 321, the registration management unit 326 generates the service use situation information based on, for example, the vehicle use schedule information managed by the user service registration information DB of the storage unit 520 or the schedule management unit 325, and distributes the service use situation information to the mobile terminal 20Aa via the communication processing unit 321.

The key sharing management unit 327 performs an operation and management of the key sharing service.

For example, according to the key sharing request received from the mobile terminal 20Aa of the owner user by the communication processing unit 321, the key sharing management unit 327 performs the arrangement of the authentication key to the mobile terminals 20Aa and 20Ab corresponding to the regular user ID designated by the key sharing request. Specifically, the key sharing management unit 327 collates the owner user ID and the password included in the key sharing request with the owner user ID and the password stored in the storage unit 320, and determines that the key sharing request is a regular key sharing request when both match. The key sharing management unit 327 inquires of the schedule management unit 325 and determines whether or not there is mismatch, that is, duplication of the use date and time regarding the use of the services and the vehicle 10A of the regular users between the use period information included in the key sharing request and the latest vehicle use schedule information. When there is no duplication of the use time, the key sharing management unit 327 sends, to the authentication key issuance unit 323, the authentication key arrangement request including information on the regular users corresponding to the mobile terminals 20Aa and 20Ab that are distribution targets of the authentication key specified by the information included in the key sharing request, and the vehicle 10A that is a target of locking, unlocking, or activation using the authentication key, and authority information such as a period of time in which the authentication key is available to the respective mobile terminals 20Aa and 20Ab, the number of times the authentication key is available to the respective mobile terminals 20Aa and 20Ab, unlockable doors, and whether or not the vehicle can be activated. Accordingly, the authentication key issuance unit 323 can specify the regular user IDs corresponding to the mobile terminals 20Aa and 20Ab that are distribution targets of the authentication key, and the vehicle 10A that is a target of locking, unlocking, or activation using the authentication key, and issue an appropriate authentication key.

For example, the key sharing management unit 327 confirms, for example, attribute information (for example, an age or presence or absence of a driving license) of the users of the mobile terminals 20Aa and 20Ab that are distribution targets of the authentication key that is designated by the key sharing request, which is stored in the storage unit 320. When the users of the mobile terminal 20Aa and 20Ab (regular users of the vehicle 10A) that are distribution targets of the authentication key are users determined to be unable to drive the vehicle 10A, the key sharing management unit 327 allows an authentication key to which an authority to be unable to activate the vehicle 10A has been imparted to be issued to the mobile terminal 20 of the user. The user who cannot drive the vehicle 10A is, for example, a user who has not reached an age at which the user can acquire a driver's license or a user who does not acquire the driver's license. Specifically, the key sharing management unit 327 sends an authentication key arrangement request in which an indication that the activation of the vehicle 10A is prohibited is included in authority information corresponding to the mobile terminals 20Aa and 20Ab corresponding to the users determined to be unable to drive the vehicle 10A, to the authentication key issuance unit 323. Accordingly, since the authentication key issuance unit 323 can distribute the authentication key to which the authority to prohibit the activation of the vehicle 10A has been imparted, to the mobile terminals 20Aa and 20Ab of the users who are unable to drive the vehicle 10A, it is possible to improve safety of the vehicle 10A in the key sharing service.

For example, the key sharing management unit 327 distributes the authentication key of the vehicle 10A to the other mobile terminal 20 designated by the temporary key sharing request received from the mobile terminal 20Aa of the owner user by the communication processing unit 321 based on the temporary key sharing request. Specifically, the key sharing management unit 327 specifies the ID of the installing user corresponding to the other mobile terminal 20 that is a distribution target (hereinafter referred to as “installing user ID”) based on the installing user information DB of the key application stored in the storage unit 320. The key sharing management unit 327 sends an authentication key arrangement request including the designated installing user ID and information (for example, an issued ID of the authentication key included in the temporary key sharing request) corresponding to the authentication key designated by the temporary key sharing request to the authentication key issuance unit 323. Accordingly, the authentication key issuance unit 323 can specify another mobile terminal 20 that is a distribution target based on the installing user ID, the issued ID of the authentication key, and the like, and distribute the authentication key to the other mobile terminal 20 via the communication processing unit 321.

A function of the key sharing management unit 327 may be transferred to a server (a key sharing management server) outside the center server 30, which may be included in the service management server 40, similar to other services for using the vehicle 10A.

The mobile terminal 20Ab carried by the child user includes the communication processing unit 231, the communication processing unit 232, the authentication key acquisition unit 233, the authentication request unit 234, the locking and unlocking request unit 235, and the storage unit 230, as described above.

In the embodiment, description will be given on the premise that the function of the authentication key acquisition unit 233 of the mobile terminal 20Ab is available to the child user by the key application being activated and the user authentication based on bidirectional communication with the center server 30 being successful. Description will be given on the premise that the user authentication is performed by the center server 30 based on the child user ID and the password. Description will be given on the premise that functions of the authentication request unit 234 and the locking and unlocking request unit 235 of the mobile terminal 20Ab are available to the child user by the key application being activated.

The authentication key acquisition unit 233 acquires the authentication key distributed from the center server 30 according to the key sharing request transmitted from the mobile terminal 20Aa to the center server 30 via the communication processing unit 232, as described above. Accordingly, the mobile terminal 20Ab can lock and unlock the doors of the vehicle 10A or activate the vehicle 10A based on the functions of the communication processing unit 231, the authentication request unit 234, and the locking and unlocking request unit 235. That is, the child user carrying the mobile terminal 20Ab can directly use the vehicle 10A through the key sharing service. For example, the child user can lock and unlock the vehicle 10A using the mobile terminal 20Ab without performing key exchange with the owner user and drive the vehicle 10A. Similarly, the owner user can lend the vehicle 10A to the child user without exchanging the key with the child user. Accordingly, it is possible to improve convenience in lending and borrowing of the vehicle 10A between the owner user of the vehicle 10A and the child user through the key sharing service in the authentication key management system 1.

The authentication key acquisition unit 233 acquires the authentication key that is distributed from the center server 30 according to the temporary key sharing request transmitted from the mobile terminal 20Aa to the center server 30 via the communication processing unit 232, as described above. The same applies to a case where the authentication key is distributed to another mobile terminal 20 other than the mobile terminal 20Ab of the child user according to the temporary key sharing request. Accordingly, the other mobile terminal 20 including the mobile terminal 20Ab can lock and unlock the doors of the vehicle 10A or activate the vehicle 10A based on the functions of the communication processing unit 231, the authentication request unit 234, and the locking and unlocking request unit 235. That is, for example, when a plurality of persons including other regular users get on the vehicle 10A together and go out and even when the child user carrying the mobile terminal 20Ab does not acquire the authentication key in advance, the child user does not have to borrow the mobile terminals 20Aa and 20Ab to which the authentication key has already been distributed, and can directly use the vehicle 10A using the mobile terminal 20Ab, such as locking and unlocking the vehicle 10A or driving the vehicle 10A. Similarly, even when the owner user has not caused the mobile terminal 20Ab of the child user to acquire the authentication key, it is not needed for the owner user to lend the mobile terminal 20Aa of the owner user to the child user. Accordingly, it is possible to improve convenience of the user in a case where a plurality of persons including the regular user of the vehicle 10A get on the vehicle 10A together and use the vehicle 10A through the temporary key sharing in the authentication key management system 1.

Details of Configuration Regarding Trunk Delivery Service

A configuration regarding the trunk delivery service in the authentication key management system 1 will be described with reference to FIG. 4.

FIG. 4 is a diagram mainly illustrating an example of a configuration regarding a trunk delivery service in the authentication key management system 1. Hereinafter, the configuration regarding the trunk delivery service in the authentication key management system 1 will be mainly described with reference to FIG. 4, and duplicate description on the configuration overlapping the above-described configuration regarding the key sharing service will be omitted as much as possible.

The processing device 23 of the mobile terminal 20Aa carried by the owner user of the vehicle 10A includes the communication processing unit 232, the user registration request unit 236, the service use registration request unit 237, and the service use situation request unit 238, as described above.

The user registration request unit 236 requests the center server 30 to register the regular user (a child user) of the vehicle 10A who uses various services including the trunk delivery service according to a predetermined manipulation by the owner user, as described above.

The service use registration request unit 237 requests the center server 30 to perform the registration of use of various services including the trunk delivery service for each registered regular user (the owner user or the child user) according to a predetermined manipulation by the owner user, as described above.

For example, the service use registration request unit 237 transmits, as the service link information, a service use registration request for using the trunk delivery service including a service login ID of a web site for a user who uses the service of the delivery management server 50 (hereinafter referred to as a “delivery site”) and a service login ID of the EC site, which corresponds to the regular user of the vehicle 10A that is a registration target, to the center server 30.

The service use situation request unit 238 requests the center server 30 to provide information on a use situation of various services (service use situation information) including the trunk delivery service of the regular user of the vehicle 10A for which the use registration has been performed, in a form corresponding to the owner user ID according to a predetermined manipulation by the owner user, as described above.

The delivery management server 50 includes a communication device 51 and a processing device 52.

The communication device 51 is any device that performs bidirectional communication with each of the mobile terminal 20, the center server 30, and the EC server 60 over a predetermined communication network.

The processing device 52 includes, for example, a communication processing unit 521, a service cooperation registration unit 522, a delivery reception unit 523, and a delivery management unit 524 as functional units that are realized by executing one or more programs stored in the ROM or the auxiliary storage device on the CPU. The processing device 52 includes a storage unit 520 that is realized as a storage area of an auxiliary storage device or the like of the server computer.

The communication processing unit 521 controls the communication device 51 to perform transmission and reception of various signals such as control signals or information signals to and from each of the mobile terminal 20, the center server 30, and the EC server 60.

The service cooperation registration unit 522 performs information registration for cooperation between the center server 30 regarding the use of the trunk delivery service of the regular user of the vehicle 10A and the delivery management server 50 according to the service use registration completion notification received from the center server 30 by the communication processing unit 521.

For example, the service cooperation registration unit 522 adds a flag indicating a use target of the trunk delivery service to the service login ID (service link information) included in the service use registration completion notification in the user management DB that manages the user of the delivery site constructed in the storage unit 520. In addition, the service cooperation registration unit 522 performs registration in an aspect in which a service login ID of a web site (that is, the EC site) corresponding to the EC server 60 included in the service use registration completion notification is linked to the service login ID included in the service use registration completion notification in the user management DB of the storage unit 520. Accordingly, when an order reception including a service login ID is received from the EC server 60 by the communication processing unit 521, the delivery management server 50 can specify the corresponding service login ID of the delivery site. The delivery management server 50 transmits the authentication key arrangement request including the specified service login ID to the center server 30 such that it is possible to cause the authentication key to be distributed from the center server 30 to the mobile terminal 20Ac of the deliverer, as described above.

The delivery reception unit 523 receives information (delivery request information) on the luggage delivery request including the service login ID of the EC site corresponding to an orderer of the product at the EC site from the EC server 60 via the communication processing unit 521. The delivery request information received from the EC server 60 includes information on a designated delivery destination (delivery destination information), information on a designated delivery date and time (delivery date and time information), and the like in addition to basic information such as a name, an address, and a telephone number of the orderer that is a delivery destination.

The delivery management unit 524 performs an operation and management of each process from receipt to delivery regarding the delivery request received by the delivery reception unit 523.

For example, when the delivery management unit 524 receives a notification that a luggage has reached a business office that has jurisdiction over a parking position of the vehicle 10A designated by the delivery destination information of the delivery request, the delivery management unit 524 determines a date and time of departure for delivery of the luggage, a deliverer in charge, and the like according to a designated delivery time period.

The delivery management unit 524 inquires the center server 30 about the position information of the vehicle 10A via the communication processing unit 521 before departure of the luggage (for example, 10 minutes before a departure scheduled time). When the delivery management unit 524 inquires the center server 30 about the position information of the vehicle 10A, a service login ID (that is, service link information) at a delivery site of the regular user of the vehicle 10A that is a user of the trunk delivery service is included in the inquiry. The same also applies to an inquiry about position information to be described below. The delivery management unit 524 acquires current position information of the vehicle 10A from the center server 30 via the communication processing unit 521 and determines whether or not the delivery can be performed from matching with the parking position of the designated vehicle 10A and a relationship with a jurisdiction area.

When the delivery management unit 524 determines that the delivery can be performed, the delivery management unit 524 transmits a notification that the luggage can be delivered to the trunk of the vehicle 10A (delivery available notification) to the mobile terminal 20Ac of the deliverer via the communication processing unit 521.

When an authentication key acquisition request is received from the mobile terminal 20Ac that has received the delivery available notification by the communication processing unit 521, the delivery management unit 524 determines whether or not the authentication key acquisition request is a regular authentication key acquisition request. Specifically, the delivery management unit 524 may perform the determination by collating information on a luggage that is a delivery target (hereinafter referred to as “delivery luggage information” for convenience) such as a deliverer, a destination (for example, a name of a recipient or a corporate name), a type of luggage, a delivery time period, and a delivery place that can be included in the authentication key acquisition request, with various types of information on the luggage registered in the storage unit 520. When the delivery management unit 524 determines that the authentication key acquisition request is a regular authentication key acquisition request, the delivery management unit 524 transmits an authentication key arrangement request to the center server 30 via the communication processing unit 521. When the delivery management unit 524 transmits the authentication key arrangement request to the center server 30, information for specifying the mobile terminal 20Ac of the deliverer may be included in the authentication key arrangement request. The information for specifying the deliverer may be, for example, an authentication ID for obtaining user authentication at the center server 30 in order for the deliverer to use the function of the key application corresponding to the authentication key acquisition unit 233 of the mobile terminal 20Ac or the like (hereinafter referred to as a “deliverer ID” for convenience). Accordingly, the mobile terminal 20Ac of the deliverer can acquire the authentication key from the center server 30.

When the delivery management unit 524 receives an inquiry about the current position of the vehicle 10A from the mobile terminal 20Ac of the deliverer who has left for the delivery from the business office via the communication processing unit 521, the delivery management unit 524 inquires of the center server 30 about the current position information of the vehicle 10A. The delivery management unit 524 acquires the current position information of the vehicle 10A from the center server 30 via the communication processing unit 521 and transmits (transfers) the current position information of the vehicle 10A to the mobile terminal 20Ac of the deliverer. Accordingly, the deliverer who has gone out can compare the current position information of the vehicle 10A with the information on the parking position of the vehicle 10A designated by the delivery destination information and determine whether to deliver the luggage or return to the business office.

When the delivery management unit 524 receives the delivery completion notification received from the mobile terminal 20Ac of the deliverer who has completed the delivery of the luggage via the communication processing unit 521, an operation and management regarding the trunk delivery service regarding the luggage basically ends. When the operation and management regarding the trunk delivery service regarding the luggage ends, the delivery management unit 524 may notify delivery to the regular user of the vehicle 10A that is a client (a purchaser of a product at the EC site) through an electronic mail or a predetermined application cooperating with the delivery site installed in the mobile terminals 20Aa and 20Ab has been completed.

The DCM 14 of the vehicle 10A may determine that the delivery by the deliverer has been completed when the door (the trunk lid or the like) for access to the trunk of the vehicle 10A is locked after the door is unlocked, and notify the center server 30 that the delivery by the deliverer has been completed, as described above. Accordingly, the center server 30 can transmit a delivery completion notification to the delivery management server 50 when the notification is received. That is, the delivery completion notification may be transmitted from the center server 30 to the delivery management server 50.

The EC server 60 includes a communication device 61 and a processing device 62.

The communication device 61 is any device that performs bidirectional communication with each of the mobile terminal 20, the center server 30, and the delivery management server 50 over a predetermined communication network.

The processing device 62 includes, for example, a communication processing unit 621, a web resource transmission unit 622, a service cooperation registration unit 623, and an order reception processing unit 624 as functional units that are realized by executing one or more programs stored in the ROM or the auxiliary storage device on the CPU. The processing device 62 includes a storage unit 620 that is realized as a storage area of an auxiliary storage device or the like of the server computer.

The communication processing unit 621 controls the communication device 61 to perform transmission and reception of various signals such as control signals or information signals to and from each of the mobile terminal 20, the center server 30, and the delivery management server 50.

The web resource transmission unit 622 transmits resources corresponding to the web page to be displayed on a browser of any terminal of the user browsing the EC site including the mobile terminals 20Aa and 20Ab based on various types of information as resources of the EC site stored in the storage unit 620 to the browser of the terminal using a predetermined scheme. A top page of the EC site, a web page corresponding to individual product handled at the EC site, an order input page for the user to input various types of information at the time of ordering individual product, and the like are included in the web page that can be displayed at the EC site. For example, the web resource transmission unit 622 transmits a Hyper Text Markup Language (HTML) document corresponding to web page, and information under the HTML document such as an image and a moving image displayed on web pages in parallel.

The service cooperation registration unit 623 performs information registration for cooperation between the center server 30 regarding the use of the trunk delivery service of the regular user of the vehicle 10A and the EC server 60 according to the service use registration completion notification received from the center server 30 by the communication processing unit 621. For example, the service cooperation registration unit 623 adds a flag indicating a use target of the trunk delivery service to the service login ID included in the service use registration completion notification in the user management DB that manages the user of the EC site constructed in the storage unit 620. In addition, the service cooperation registration unit 623 performs registration in an aspect in which a service login ID of a web site (that is, the delivery site) corresponding to the delivery management server 50 included in the service use registration completion notification is linked to the service login ID included in the service use registration completion notification in the user management DB. Accordingly, for example, when an inquiry about an ordered product including the service login ID of the delivery site is received from the delivery management server 50 by the communication processing unit 621, the EC server 60 can specify the service login ID of the corresponding EC site.

The order reception processing unit 624 receives an order of products from the user based on various manipulation inputs corresponding to the order of the product of the user at the EC site. When the order reception processing unit 624 receives an order and the trunk of the vehicle 10A is selected as a delivery destination on an order input page of the EC site, the order reception processing unit 624 inquires the center server 30 about the car use schedule information via the communication processing unit 621. Accordingly, the order reception processing unit 624 can acquire the latest vehicle use schedule information via the communication processing unit 621. Therefore, for example, when a designated date and time of delivery has already overlapped another schedule, the order reception processing unit 624 can take countermeasures such as requesting to change a delivery date and time.

As described above, the trunk delivery service in which a luggage other than an ordered product at the EC site is a target can also be assumed. In the above-described case, the delivery management server 50 may similarly acquire the latest vehicle use schedule information from the center server 30. Accordingly, the delivery management server 50 can take countermeasures such as requesting to change a delivery date and time when a date and time of delivery of the luggage to the trunk of the vehicle 10A designated by the regular user of the vehicle 10A has already overlapped another schedule.

The processing device 32 of the center server 30 includes the communication processing unit 321, the condition determination unit 322, the authentication key issuance unit 323, the position information management unit 324, the schedule management unit 325, the registration management unit 326, and the storage unit 320, as described above.

When the condition determination unit 322 receives the authentication key arrangement request from the delivery management server 50 via the communication processing unit 321, the condition determination unit 322 determines whether or not the authentication key arrangement request is a regular authentication key arrangement request. For example, the condition determination unit 322 determines whether or not the authentication key arrangement request is the regular authentication key arrangement request based on the service login ID of the delivery site included in the authentication key arrangement request or predetermined authentication information (for example, the ID and the password) corresponding to the delivery management server 50.

When the condition determination unit 322 determines whether or not the authentication key arrangement request is a regular authentication key arrangement request, the authentication key issuance unit 323 specifies the vehicle 10A corresponding to the authentication key arrangement request based on the user service registration information DB of the storage unit 320. The authentication key issuance unit 323 issues the authentication key in which a time is limited (for example, the vehicle is available solely in units of several minutes to tens of minutes from the distribution), the number of times of use is limited (for example, the number of times of use is solely 1), and an authority is limited so that solely locking and unlocking of the trunk lid can be allowed. Accordingly, it is possible to suppress unauthorized use of the vehicle 10A by the deliverer and to improve security. The authentication key issuance unit 323 distributes the authentication key to the mobile terminal 20Ac of the deliverer specified by the authentication key arrangement request via the communication processing unit 321.

For example, any method such as a known mathematical method or a method based on bidirectional communication between the center server 30 and the vehicle 10 may be adopted as a method of limiting a period of time in which the authentication key is available or the number of times the authentication key is available.

The position information management unit 324 transmits a position information request to the vehicle 10A via the communication processing unit 321 according to the inquiry about the current position of the vehicle 10A from the delivery management server 50 received by the communication processing unit 321. Accordingly, the DCM 14 of the vehicle 10A can reply the center server 30 with the position information of the vehicle 10A input from the GPS module 13 according to the position information request from the center server 30, and the position information management unit 324 can acquire the current position information from the vehicle 10A via the communication processing unit 321. The position information management unit 324 replies the delivery management server 50 with the current position information acquired from the vehicle 10A via the communication processing unit 321.

The schedule management unit 325 replies the EC server 60 with the latest vehicle use schedule information stored in the storage unit 320 via the communication processing unit 321 according to the inquiry from the EC server 60 received by the communication processing unit 321.

The registration management unit 326 performs registration of the regular user (the child user) who uses various services including the trunk delivery service according to the user registration request received from the mobile terminal 20Aa of the owner user by the communication processing unit 321, as described above. The registration management unit 326 performs registration of use of the trunk delivery service by the regular user of the vehicle 10A according to the service use registration request received from the mobile terminal 20Aa of the owner user by the communication processing unit 321, as described above. When the registration of use of various services including the trunk delivery service has been completed, the registration management unit 326 notifies the mobile terminals 20Aa and 20Ab corresponding to the regular users that are registration targets that the registration of use of various services including the trunk delivery service has been completed via the communication processing unit 321, as described above. When the registration of use of the trunk delivery service has been completed, the registration management unit 326 transmits a service use registration completion notification including the service link information to the delivery management server 50 and the EC server 60 that perform an operation and management of a service that is a registration target via the communication processing unit 321.

The processing device 23 of the mobile terminal 20Ac of a deliverer includes the communication processing unit 231, the communication processing unit 232, the authentication key acquisition unit 233, the authentication request unit 234, and the locking and unlocking request unit 235, as described above.

In the embodiment, the description will be given on the premise that the functions of the authentication key acquisition unit 233, the authentication request unit 234, and the locking and unlocking request unit 235 of the mobile terminal 20Ac are available to the owner user by the key application being activated.

The authentication key acquisition unit 233 transmits the authentication key acquisition request to the delivery management server 50 via the communication processing unit 232 according to a predetermined manipulation by a deliverer. In the above-described case, the authentication key acquisition request includes the above-described delivery luggage information stored in the storage unit 230 in advance. Accordingly, the delivery management server 50 transmits an authentication key arrangement request to the center server 30 according to the authentication key acquisition request, the center server 30 distributes the authentication key to the mobile terminal 20Ac according to the authentication key arrangement request, and the mobile terminal 20Ac can acquire the authentication key. Therefore, the mobile terminal 20Ac can lock and unlock the trunk lid of the vehicle 10A based on the functions of the communication processing unit 231, the authentication request unit 234, and the locking and unlocking request unit 235, such that the deliverer can deliver the requested luggage to the trunk of the vehicle 10A, lock the trunk of the vehicle 10A, and return to home.

Details of Configuration Regarding C2C Car Sharing Service

A configuration regarding a C2C car sharing service in the authentication key management system 1 will be described with reference to FIG. 5.

FIG. 5 is a diagram mainly illustrating an example of the configuration regarding the C2C car sharing service in the authentication key management system 1. Hereinafter, the configuration regarding the C2C car sharing service in the authentication key management system 1 will be mainly described with respect to FIG. 5, and duplicate description on the configuration overlapping the above-described configuration regarding the key sharing service or the like will be omitted as much as possible.

The processing device 23 of the mobile terminal 20Aa carried by the owner user of the vehicle 10A includes the communication processing unit 232, the user registration request unit 236, the service use registration request unit 237, the service use situation request unit 238, as described above.

The user registration request unit 236 requests the center server 30 to register the regular user (a child user) of the vehicle 10A who uses various services including the C2C car sharing service according to a predetermined manipulation by the owner user, as described above.

The service use registration request unit 237 requests the center server 30 to perform the registration of use of various services including the C2C car sharing service for each registered regular user (the owner user or the child user) according to a predetermined manipulation by the owner user, as described above.

For example, the service use registration request unit 237 transmits, as the service link information, a service use registration request for using the C2C car sharing service including a service login ID of a web site for a user who uses the C2C car sharing service corresponding to the C2C car sharing management server 70 (hereinafter referred to as a “C2C car sharing site”), which corresponds to the regular user of the vehicle 10A that is a registration target, to the center server 30.

The service use situation request unit 238 requests the center server 30 to provide information on a use situation of various services (service use situation information) including the C2C car sharing service of the regular user of the vehicle 10A for which the use registration has been performed, in a form corresponding to the owner user ID according to a predetermined manipulation by the owner user, as described above.

The C2C car sharing management server 70 includes a communication device 71 and a processing device 72.

The communication device 71 is any device that performs bidirectional communication with each of the mobile terminal 20 and the center server 30 over a predetermined communication network.

The processing device 72 includes, for example, a communication processing unit 721, a service cooperation registration unit 722, a reservation management unit 723, and a vehicle management unit 724 as functional units that are realized by executing one or more programs stored in the ROM or the auxiliary storage device on the CPU. The processing device 72 includes a storage unit 720 that is realized as a storage area of an auxiliary storage device or the like of the server computer.

Description will be given on the premise that the information for specifying the vehicle 10A that is a lending target has already been registered (stored) in the storage unit 720 in an aspect in which the information is linked to the service login ID via the C2C car sharing site by the regular user (the owner user) of the vehicle 10A.

The communication processing unit 721 controls the communication device 71 to perform transmission and reception of various signals such as control signals or information signals to and from each of the mobile terminal 20 and the center server 30.

The service cooperation registration unit 722 performs information registration for cooperation between the center server 30 regarding the use of the C2C car sharing service of the regular user of the vehicle 10A and the C2C car sharing management server 70 according to the service use registration completion notification received from the center server 30 by the communication processing unit 721.

For example, the service cooperation registration unit 722 adds a flag indicating a lender of the vehicle 10A of the C2C car sharing service to the service login ID included in the service use registration completion notification in the user management DB that manages the user of the C2C car sharing site constructed in the storage unit 720. The C2C car sharing management server 70 transmits the authentication key arrangement request including the service login ID corresponding to the regular user of the vehicle 10A, which is the lender, to the center server 30 such that it is possible to cause the authentication key to be distributed from the center server 30 to the mobile terminal 20Ad of the borrower, as described above.

The reservation management unit 723 manages reservation of use of the vehicle 10A that is performed through the C2C car sharing site or the like.

For example, the reservation management unit 723 receives registration of a date and time on which the vehicle 10A is rentable from the regular user of the vehicle 10A through the C2C car sharing site and registers (stores) the received date and time on which the vehicle 10A is rentable in the storage unit 720. When the date and time on which the vehicle 10A is rentable is registered (stored) in the storage unit 720, the reservation management unit 723 inquires of the center server 30 about the car use schedule information via the communication processing unit 721. Accordingly, the reservation management unit 723 can acquire the latest vehicle use schedule information via the communication processing unit 721. Therefore, the C2C car sharing management server 70, for example, can take countermeasures such as requesting to change the date and time on which the vehicle 10A is rentable, which is received from the regular user of the vehicle 10A, or registering a portion excluding an overlapping portion from the date and time on which the vehicle 10A is rentable as the date and time on which the vehicle 10A is rentable when the date and time on which the vehicle 10A is rentable already overlaps another schedule or registering.

For example, the reservation management unit 723 receives the reservation of use of the vehicle 10A within a range of the date and time on which the vehicle 10A is rentable, which is stored in the storage unit 720. When the reservation management unit 723 receives the reservation of use of the vehicle 10A from a user who is a borrower through the C2C car sharing site, the reservation management unit 723 updates information on a lending schedule of the vehicle 10A (lending schedule information) stored in the storage unit 720.

For example, when the authentication key acquisition request is received from the mobile terminal 20Ad of the borrower of the vehicle 10A by the communication processing unit 721, the reservation management unit 723 determines whether or not the authentication key acquisition request is a regular authentication key acquisition request. Specifically, the reservation management unit 723 may perform the determination based on the service login ID and the password of the C2C car sharing site included in the authentication key acquisition request, or a relationship regarding the date and time of reservation of use (for example, within a range of the date and time of reservation of use or less than a predetermined time until a date and time of use start). When the authentication key acquisition request is a regular authentication key acquisition request, the reservation management unit 723 transmits an authentication key arrangement request to the center server 30 via the communication processing unit 721. When the authentication key arrangement request is transmitted to the center server 30, information for specifying the mobile terminal 20Ad of the borrower user of the vehicle 10A is included in the authentication key arrangement request. The information for specifying the borrower user of the vehicle 10A may be, for example, an authentication ID (hereinafter referred to as a “borrower user ID” for convenience) for obtaining user authentication in the center server 30 in order for the borrower user of the vehicle 10A to use a function of the authentication key acquisition unit 233 of the mobile terminal 20Ad. Accordingly, the mobile terminal 20Ad of the borrower user of the vehicle 10A can acquire the authentication key from the center server 30.

The vehicle management unit 724 manages the vehicle 10A that is a lending target.

For example, the vehicle management unit 724 inquires of the center server 30 about a current position information of the vehicle 10A via the communication processing unit 721 before the date and time of reservation of use of the vehicle 10A (for example, a period from tens of minutes ago to immediately before). The vehicle management unit 724 acquires the current position information of the vehicle 10A replied from center server 30 according to the inquiry via the communication processing unit 721. Accordingly, a determination can be made as to whether or not the vehicle 10A returns to a designated place before a date and time of lending (a date and time of reservation of use) of the vehicle 10A. Accordingly, when the vehicle 10A does not return to the designated place, the C2C car sharing management server 70 can take countermeasures such as warning the regular user who is a lender of the vehicle 10A so that the vehicle 10A returns to the designated place through an e-mail or a predetermined application cooperating with the C2C car sharing site, which is installed in the mobile terminals 20Aa and 20Ab.

The processing device 32 of the center server 30 includes the communication processing unit 321, the condition determination unit 322, the authentication key issuance unit 323, the position information management unit 324, the schedule management unit 325, the registration management unit 326, and the storage unit 320, as described above.

When the authentication key arrangement request is received from the

C2C car sharing management server 70 by the communication processing unit 321, the condition determination unit 322 determines whether or not the authentication key arrangement request is a regular authentication key arrangement request. For example, the condition determination unit 322 determines whether or not the authentication key arrangement request is the regular authentication key arrangement request based on the service link information included in the authentication key arrangement request (for example, the service login ID of the C2C car sharing site) or predetermined authentication information (for example, the ID and the password) corresponding to the C2C car sharing management server 70.

When the condition determination unit 322 determines whether or not the authentication key arrangement request is a regular authentication key arrangement request, the authentication key issuance unit 323 specifies the vehicle 10A corresponding to the authentication key arrangement request based on the user service registration information DB of the storage unit 320. The authentication key issuance unit 323 issues the authentication key in which a time is limited (for example, the vehicle is available solely at the date and time of reservation of use of the vehicle 10A included in the authentication key arrangement request and in a buffering period before and after the date and time of reservation of use of the vehicle 10A). The authentication key issuance unit 323 distributes the authentication key to the mobile terminal 20Ad of the borrower of the vehicle 10A specified by the authentication key arrangement request via the communication processing unit 321.

The C2C car sharing service may include, for example, a service (a C2C trunk sharing service) in an aspect in which solely a trunk of the vehicle 10A are lent. In the case of a vehicle trunk lending service, the authentication key issuance unit 323 may issue an authentication key with an authority limited so that locking and unlocking of the trunk lid are allowed. Accordingly, it is possible to limit a lending target of C2C car sharing to solely the trunk. By limiting the lending target of the C2C car sharing to solely the trunk, for example, a trunk delivery service in an aspect in which the trunk of the vehicle 10A to be lent at a travel destination is borrowed and a purchased product for use at a travel destination is delivered to the borrowed trunk can be realized.

The position information management unit 324 transmits a position information request to the vehicle 10A via the communication processing unit 321 according to the inquiry about the current position of the vehicle 10A from the C2C car sharing management server 70 received by the communication processing unit 321. Accordingly, the position information management unit 324 can acquire the current position information from the vehicle 10A via the communication processing unit 321. The position information management unit 324 replies the C2C car sharing management server 70 with the current position information acquired from the vehicle 10A via the communication processing unit 321.

The schedule management unit 325 transmits the latest vehicle use schedule information to the vehicle 10A via the communication processing unit 321 according to the inquiry about the current position of the vehicle 10A from the C2C car sharing management server 70 received by the communication processing unit 321.

The registration management unit 326 performs registration of the regular user (the child user) who uses various services including the C2C car sharing service according to the user registration request received from the mobile terminal 20Aa of the owner user by the communication processing unit 321, as described above. The registration management unit 326 performs registration of use of the C2C car sharing service by the regular user of the vehicle 10A according to the service use registration request received from the mobile terminal 20Aa of the owner user by the communication processing unit 321, as described above. When the registration of use of various services including the C2C car sharing service has been completed, the registration management unit 326 notifies the mobile terminals 20Aa and 20Ab corresponding to the regular users that are registration targets that the registration of use of various services including the C2C car sharing service has been completed via the communication processing unit 321, as described above. When the registration of use of the C2C car sharing service has been completed, the registration management unit 326 transmits a service use registration completion notification including the service link information to the C2C car sharing management server 70 that performs an operation and management of a service that is a registration target via the communication processing unit 321.

The processing device 23 of the mobile terminal 20Ad of the borrower of the vehicle 10A includes the communication processing unit 231, the communication processing unit 232, the authentication key acquisition unit 233, the authentication request unit 234, the locking and unlocking request unit 235, and the storage unit 230, as described above.

The authentication key acquisition unit 233 transmits an authentication key acquisition request to the C2C car sharing management server 70 via the communication processing unit 232 according to a predetermined manipulation by the borrower of the vehicle 10A. When the authentication key acquisition request is transmitted, the service login ID of the C2C car sharing site corresponding to the borrower of the vehicle 10A is included in the authentication key acquisition request. Accordingly, the C2C car sharing management server 70 can transmit an authentication key arrangement request to the center server 30 according to the authentication key acquisition request, the center server 30 can distribute the authentication key to the mobile terminal 20Ad according to the authentication key arrangement request, and the mobile terminal 20Ad can acquire the authentication key. Therefore, the mobile terminal 20Ad can lock and unlock the door of the vehicle 10A based on the functions of the communication processing unit 231, the authentication request unit 234, and the locking and unlocking request unit 235. That is, the borrower of the vehicle 10A carrying the mobile terminal 20Ad can directly use the vehicle 10A, such as locking and unlocking the vehicle 10A and driving the vehicle 10A using the mobile terminal 20Ad without performing exchange of a key with the regular user of the vehicle 10A through the C2C car sharing service. Similarly, the regular user of the vehicle 10A can lend the vehicle 10A to another person other than the regular user without exchanging the key. Therefore, it is possible to improve convenience in lending and borrowing of the vehicle 10A between the regular user of the vehicle 10A and another person other than the regular user through the C2C car sharing service in the authentication key management system 1.

Details of Configuration Regarding B2C Car Sharing Service

A B2C car sharing service in the authentication key management system 1 will be described with reference to FIG. 6.

FIG. 6 is a diagram mainly illustrating an example of the configuration regarding the B2C car sharing service in the authentication key management system 1.

Hereinafter, the configuration regarding the B2C car sharing service in the authentication key management system 1 will be mainly described with respect to FIG. 6, and duplicate description on the configuration overlapping the above-described configuration regarding the key sharing service or the like will be omitted as much as possible.

The B2C car sharing management server 80 includes a communication device 81 and a processing device 82.

The communication device 81 is any device that performs bidirectional communication with each of the mobile terminal 20B and the center server 30 over a predetermined communication network.

The processing device 82 includes, for example, a communication processing unit 821, a reservation management unit 822, and a vehicle management unit 823 as functional units that are realized by executing one or more programs stored in the ROM or the auxiliary storage device on the CPU. The processing device 82 includes a storage unit 820 that is realized as a storage area of an auxiliary storage device or the like of the server computer.

The communication processing unit 821 controls the communication device 81 to perform transmission and reception of various signals such as control signals or information signals to and from each of the mobile terminal 20B and the center server 30.

The reservation management unit 822 manages the reservation of use of the vehicle 10B that is performed through the B2C car sharing site or the like.

For example, the reservation management unit 822 receives reservation of use of the vehicle 10B from a user (hereinafter referred to as “borrower user”) who wants to borrow the vehicle 10B through a website that is operated by a company of the B2C car sharing management server 80 or the like (hereinafter referred to as a “B2C car sharing site” for convenience). The reservation management unit 822 stores information on the received reservation of use of the vehicle 10B (use reservation information) in the storage unit 820. When the use reservation information is stored in the storage unit 820, for example, information for specifying the vehicle 10B that is a target, information on a date and time of reservation of use (a start date and time of use and an end date and time of use), and a service login ID of the borrower user in the B2C car sharing site may be included in the use reservation information.

For example, the reservation management unit 822 updates the information on the use schedule of the vehicle 10B (the vehicle use schedule information) stored in the storage unit 820 each time the reservation management unit 822 receives the reservation of use of the vehicle 10B. Accordingly, the B2C car sharing management server 80 can display the use schedule of the vehicle 10B on the B2C car sharing site to present a date and time when the reservation of use can be made, to the borrower user.

For example, when the authentication key request is received from the mobile terminal 20B by the communication processing unit 821, the reservation management unit 822 determines whether or not the authentication key request is a regular authentication key request. Specifically, the reservation management unit 822 may perform the determination based on the service login ID and the password of the B2C car sharing site corresponding to the borrower user included in the authentication key request, or a relationship regarding the date and time of reservation of use (for example, within a range of the date and time of reservation of use or less than a predetermined time until a date and time of use start). When the authentication key request is a regular authentication key acquisition request, the reservation management unit 822 transmits an authentication key arrangement request to the center server 30 via the communication processing unit 821. When the authentication key arrangement request is transmitted to the center server 30, information for specifying the mobile terminal 20B of the borrower user borrowing the vehicle 10B is included in the authentication key arrangement request. The information for specifying the borrower user borrowing the vehicle 10B may be, for example, an authentication ID (hereinafter referred to as a “borrower user ID” for convenience) for obtaining user authentication in the center server 30 in order for the borrower user borrowing the vehicle 10B to use a function of a key application corresponding to the authentication key acquisition unit 233 of the mobile terminal 20B or the like. Accordingly, the mobile terminal 20B of the borrower user borrowing the vehicle 10B can acquire the authentication key from the center server 30.

The vehicle management unit 823 manages the vehicle 10B that is a lending target.

For example, the vehicle management unit 823 inquires of the center server 30 about the vehicle 10B parked in the vicinity (for example, within hundreds of meters) of a place designated in the reservation of use via the communication processing unit 821 before the date and time of reservation of use of the vehicle 10B of a borrower user (for example, before tens of minutes). The vehicle management unit 823 acquires the position information of the vehicle 10B parked in the vicinity of the designated place replied from center server 30 according to the inquiry via communication processing unit 821. Accordingly, the vehicle management unit 823 can specify one or a plurality of vehicles 10B parked around the designated place and determine, for example, the vehicle 10B to be lent before the start date and time of use of the vehicle 10B of the borrower.

For example, the vehicle management unit 823 inquires of the center server 30 about the position information of the vehicle 10B in the designated area via the communication processing unit 821 according to a search request of the vehicle 10B in a designated area by the borrower user at the B2C car sharing site. The vehicle management unit 823 acquires the position information of the vehicle 10B in the designated area replied from center server 30 according to the inquiry via communication processing unit 821. Accordingly, the vehicle management unit 823, for example, can present the position information of the vehicle 10B that is a target to the borrower user who wants to borrow the vehicle 10B in the designated area immediately at the B2C car sharing site.

The processing device 32 of the center server 30 includes the communication processing unit 321, the condition determination unit 322, the authentication key issuance unit 323, and the storage unit 320, as described above.

When the authentication key arrangement request received from the B2C car sharing management server 80 is received by the communication processing unit 321, the condition determination unit 322 determines whether or not the authentication key arrangement request is a regular authentication key arrangement request. For example, the condition determination unit 322 determines whether or not the authentication key arrangement request is the regular authentication key arrangement request based on whether or not the borrower user ID included in the authentication key arrangement request is the authentication ID already registered in the storage unit 320, or on predetermined authentication information (for example, an ID Password) corresponding to the B2C car sharing management server 80.

When the condition determination unit 322 determines whether or not the authentication key arrangement request is the regular authentication key arrangement request, the authentication key issuance unit 323 issues the authentication key in which a time is limited (for example, the vehicle is available solely at the date and time of reservation of use of the vehicle 10B included in the authentication key arrangement request and in a buffering period before and after the date and time of reservation of use of the vehicle 10B). The authentication key issuance unit 323 distributes the authentication key to the mobile terminal 20B of the borrower user borrowing the vehicle 10B specified by the authentication key arrangement request via the communication processing unit 321.

The processing device 23 of the mobile terminal 20B of the borrower user borrowing the vehicle 10B includes the communication processing unit 231, the communication processing unit 232, the authentication key acquisition unit 233, the authentication request unit 234, the locking and unlocking request unit 235, and the storage unit 230, as described above.

The authentication key acquisition unit 233 transmits an authentication key acquisition request to the B2C car sharing management server 80 via the communication processing unit 232 according to a predetermined manipulation by the borrower user of the vehicle 10B. When the authentication key acquisition request is transmitted, the service login ID of the B2C car sharing site corresponding to the borrower user borrowing the vehicle 10B is included in the authentication key acquisition request. Accordingly, the B2C car sharing management server 80 can transmit an authentication key arrangement request to the center server 30 according to the authentication key acquisition request, the center server 30 can distribute the authentication key to the mobile terminal 20B according to the authentication key arrangement request, and the mobile terminal 20B can acquire the authentication key. Therefore, the mobile terminal 20B can lock and unlock the door of the vehicle 10B based on the functions of the communication processing unit 231, the authentication request unit 234, and the locking and unlocking request unit 235. That is, the borrower borrowing the vehicle 10B carrying the mobile terminal 20B can directly use the vehicle 10B, such as locking and unlocking the vehicle 10B and driving the vehicle 10B using the mobile terminal 20B without performing exchange of a key with the company of the vehicle 10B through the B2C car sharing service. Therefore, it is possible to improve convenience for the borrower user borrowing the vehicle 10B through the B2C car sharing service in the authentication key management system 1.

Details of Characteristic Operation of Center Server

A characteristic processing flow of the center server 30 will be described with reference to FIG. 7.

FIG. 7 is a flowchart schematically showing an example of a process of issuing and distributing the authentication key to the mobile terminals 20 of the users who use the vehicles 10A and 10B in the center server 30 according to the embodiment (hereinafter referred to as an “authentication key issuing and distributing process”). The process according to the flowchart is repeatedly executed at every predetermined processing cycle.

In step S702, the authentication key issuance unit 323 determines whether or not an authentication key acquisition request has been received from the mobile terminal 20 (20Aa) by the communication processing unit 321. The authentication key issuance unit 323 proceeds to step S704 when the authentication key acquisition request has been received from the mobile terminal 20Aa by the communication processing unit 321, and proceeds to step S706 when the authentication key acquisition request has not been received.

In step S704, the authentication key issuance unit 323 issues the authentication key in which various authorities imparted to the authentication key are not limited, that is, an authentication key to which a predefined maximum range of authority has been imparted. For example, the authentication key issuance unit 323 imparts, to the authentication key, an authority in which the number of times the authentication key is available or a period in which the authentication key is available is unlimited, all the doors of the vehicle 10A can be unlocked, the vehicle 10A can be activated, and the number of times the authentication key can be shared through temporary key sharing is equal to or greater than two.

In step S706, the authentication key issuance unit 323 determines whether or not the authentication key arrangement request has been received. The authentication key issuance unit 323 proceeds to step S708 when the authentication key arrangement request has been received, and ends the current process when the authentication key arrangement request has not been received.

In step S708, the authentication key issuance unit 323 determines various authorities of the authentication key according to the content of the service of using the vehicle 10A corresponding to the authentication key arrangement request, and issues an authentication key to which the various determined authorities have been imparted.

For example, FIG. 8 illustrates a table showing a relationship between the content of various services of using the vehicle 10A and the authority imparted to the authentication key.

As illustrated in FIG. 8, in the case of a normal key sharing service, the use period or the authority regarding the use period given to the authentication key may be an aspect in which the authentication key is limited by a relatively low degree of limit, such as an aspect in which the authentication key is available for several hours. This is because a distribution target of the authentication key is the mobile terminal 20Ab of the child user (a family member or a friend of the owner user or the like) of the vehicle 10A having a certain degree of reliability.

In the case of the normal key sharing service, the authentication key with an authority with which all of a door for getting on and off and the trunk door of the vehicle 10A can be unlocked and the vehicle 10A can be activated may be imparted and issued. As described above, the child user of the vehicle 10A can use all the functions regarding the unlocking and activation of the vehicle 10A.

In the case of the normal key sharing service, an authentication key with an authority with which the trunk door cannot be unlocked may be issued. Accordingly, for example, in a case where the owner user always keeps personal items in a trunk, it is possible to suppress a situation in which the child user freely uses the personal items.

In the case of the normal key sharing service, although the number of times is limited, an authentication key with an authority with which temporary key sharing is possible is issued. Accordingly, it is possible to realize temporary key sharing using the mobile terminal 20Ab of the child user.

In the case of the temporary key sharing service, the use period or the authority regarding the use period imparted to the authentication key may be an aspect in which the authentication key is limited by a relatively high degree of limit, such as an aspect in which the authentication key can be used solely several times. Accordingly, it is possible to suppress a situation in which a user of another mobile terminal 20 can freely use the vehicle 10A.

In the case of the temporary key sharing service, an authority with which solely the door for getting-on and off of the vehicle 10A can be unlocked and the vehicle 10A cannot be activated is imparted to the authentication key. Accordingly, it is possible to suppress a situation in which the user of the other mobile terminal 20 optionally drives the vehicle 10A. For example, when the owner user always keeps personal items in the trunk, it is possible to suppress a situation in which the user of the other mobile terminal 20 optionally uses the personal items of the owner user.

Even in the case of the temporary key sharing service, there is a case where the other user of the mobile terminal 20 wishes to drive the vehicle 10A. Therefore, an authentication key with an authority with which the vehicle 10A can be activated may be issued according to, for example, a setting of the owner user. In the case of the temporary key sharing service, there may be a case where the personal items of the owner user are placed in a vehicle cabin which is accessed through the door for getting on and off, rather than the trunk of the vehicle 10A. Therefore, for example, an authentication key with an authority with which unlocking of the door for getting on and off is prohibited and the trunk door can be unlocked may be imparted in order to request a luggage of the user of the other mobile terminal 20 to be put in the trunk according to setting by the owner user.

In the case of the temporary key sharing service, the authority of the distributed authentication key is limited so that temporary key sharing cannot be performed any more. Accordingly, it is possible to suppress a situation in which the authentication key shared with the other mobile terminal 20 through the temporary key sharing can be further shared with another mobile terminal 20.

In the case of the B2C car sharing service, an authentication key with an authority of a use period set according to a reserved period of the vehicle 10B is issued. Accordingly, it is possible to suppress a situation in which the vehicle 10B can be used in a time period other than a reserved time period. Hereinafter, the same applies to the cases of the B2C trunk sharing service, the C2C car sharing service, and the C2C trunk sharing service.

In the case of the B2C car sharing service, an authentication key with an authority with which all the doors of the vehicle 10B can be unlocked and the vehicle 10B can be activated is issued. Accordingly, a borrower of the vehicle 10B in the B2C car sharing service can use all the functions of the vehicle 10B.

In the case of the B2C trunk sharing service, an authentication key with an authority with which all the doors of the vehicle 10B can be solely unlocked and the activation of the vehicle 10B is prohibited is issued. Accordingly, it is possible to suppress the borrower who wishes to use the vehicle 10B as a luggage storage place from driving the vehicle 10B.

In the case of the trunk delivery service, the number of times of use or the authority regarding the number of times of use imparted to the authentication key may be limited at a relatively high degree of limit, such as a degree of limit at which solely the locking and unlocking of the trunk door are available. In the case of the trunk delivery service, an authentication key with an authority with which solely the trunk door of the vehicle 10A can be unlocked and the activation of the vehicle 10A is prohibited is issued. Accordingly, it is possible to improve the security of the vehicle 10A when the deliverer of the trunk delivery service unlocks the trunk door of the vehicle 10A and delivers the luggage.

An authentication key with the same authority may also be issued in the case of the trunk collection service or the trunk recovery service described above, in addition to the trunk delivery service.

In the case of the C2C car sharing service, an authentication key with an authority with which solely the door for getting on and off among all the doors of the vehicle 10A can be unlocked and the vehicle 10A can be activated is issued. Accordingly, for example, in a case where the owner user always keeps personal items in the trunk, it is possible to suppress the borrower of the vehicle 10A from optionally using the personal items of the owner user.

Even in the case of the C2C car sharing service, an authentication key with an authority with which the trunk door of the vehicle 10A can be unlocked may be issued according to, for example, a setting of the owner user.

In the case of the C2C trunk sharing service, an authentication key with an authority with which solely the door for getting on and off among all the doors of the vehicle 10A can be unlocked and the activation of the vehicle 10A is prohibited is issued.

As described above, it is possible to suppress the borrower who wishes to use the vehicle 10A as a luggage storage place from driving the vehicle 10A. Accordingly, for example, in a case where the owner user always keeps personal items in the trunk, it is possible to suppress the borrower of the vehicle 10A from optionally using the personal items of the owner user.

Referring back to FIG. 7, in step 5710, the authentication key issuance unit 323 distributes the issued authentication key to the mobile terminal 20 corresponding to the authentication key arrangement request via the communication processing unit 321, and ends the current process.

Operation

As described above, in the embodiment, the authentication key issuance unit 323 distributes, to the mobile terminal 20, key information (authentication key) for unlocking or activating the vehicle 10 by the mobile terminal 20 transmitting a predetermined transmission signal to the vehicle 10. The authentication key issuance unit 323 makes the authority regarding the unlocking or activation of the vehicle 10 imparted to the authentication key different according to the mobile terminal 20 that is a distribution target.

Accordingly, the center server 30 can make the authority regarding unlocking or activation of the vehicle 10 imparted to the authentication key different according to the mobile terminal 20 that is a distribution target. Accordingly, by imparting an authority according to the distribution target, it is possible to improve the security of the vehicle 10.

In the embodiment, when the authentication key issuance unit 323 distributes the authentication key to the mobile terminal 20 related to a predetermined service of using the vehicle 10, an authority regarding unlocking or activation of the vehicle 10 is made different according to the content of the service.

Accordingly, the vehicle 10 is not needed to be activated or solely some of the doors of the vehicle 10 may be unlocked according to the content of the service, and the center server 30 can distribute the authentication key to the mobile terminal 20 according to the content of the service. Therefore, for example, a situation in which the authentication key with unneeded authorities is distributed to the mobile terminal 20 of the third party (for example, the borrower of the vehicle 10 of the C2C car sharing service or the deliverer of the trunk delivery service) related to a service other than the user of the vehicle 10 can be avoided. Therefore, the center server 30 can realize improvement of the security of the vehicle 10 while maintaining the convenience of providing the service.

In the embodiment, when the predetermined service is a car sharing service (a B2C car sharing service) for general consumers by a company or a key sharing service in which a plurality of regular user including the owner user of the vehicle 10A can receive the authentication key with the respective mobile terminals 20, the authentication key issuance unit 323 distributes the authentication key with an authority with which all the doors of the vehicle 10 can be unlocked and the vehicle 10 can be activated, to the mobile terminal 20.

Accordingly, the center server 30 can specifically impart an authority appropriate for the authentication key to be distributed to the mobile terminal 20 of the borrower of the vehicle 10A according to the B2C car sharing service. The center server 30 can specifically impart an authority appropriate for the authentication key to be distributed to the mobile terminals 20 of the respective regular users according to the key sharing service of the authentication key in which the regular users including the owner user of the vehicle 10 (for example, the owner user and a family member or a friend of the owner user) can receive the authentication key with the respective mobile terminals 20.

In the embodiment, when the predetermined service is the C2C car sharing service, the authentication key issuance unit 323 distributes the authentication key with the authority with which solely the door for getting on and off among all the doors of the vehicle 10A can be unlocked, to the mobile terminal 20.

Accordingly, personal items of the owner user or the like is likely to be always kept in the luggage room of the vehicle 10A owned by an individual, and the center server 30 can specifically impart an authority appropriate for the authentication key to be distributed to the mobile terminal 20 of the borrower of the vehicle 10 according to the C2C car sharing service.

In the embodiment, when the predetermined service is the trunk delivery service, the authentication key issuance unit 323 distributes an authentication key with an authority with which solely a door (for example, a trunk door) through which the luggage room is accessed among all the doors of the vehicle 10 can be unlocked, to the mobile terminal 20.

Accordingly, in the trunk delivery service, it is sufficient that a door (for example, a trunk lid) through which the luggage room is accessed can be unlocked, and the center server 30 can specifically impart an appropriate authentication key according to the trunk delivery service.

In the embodiment, when the predetermined service is a car sharing service (a trunk sharing service) in which the inside of the cabin of the vehicle 10 is used as a trunk room, the authentication key issuance unit 323 distributes the authentication key with an authority with which the vehicle 10 cannot be activated, to the mobile terminal 20.

Accordingly, in the trunk sharing service, the borrower does not need to cause the vehicle 10 to travel, and the center server 30 can specifically impart an authority appropriate for the authentication key to be distributed to the mobile terminal 20 of the borrower according to the trunk sharing service.

In the embodiment, when the user of the mobile terminal 20 that is a distribution target is a regular user of the vehicle 10, the authentication key issuance unit 323 makes the authority regarding unlocking or activation of the vehicle 10, which is imparted to the authentication key, different according to whether the user is the owner user of the vehicle 10 or the regular user (the child user) other than the owner user of the vehicle 10.

Accordingly, for example, the owner user may wish to limit an aspect in which the vehicle 10 is used by the child user, and the key information management device can make the authority of the authentication key to be distributed to the mobile terminal 20 different between the owner user and a regular user other than the owner user.

In the embodiment, in a case where the user of the mobile terminal 20 that is a distribution target is the regular user of the vehicle 10, the authentication key issuance unit 323 makes the authority regarding the sharing of the authentication key with another mobile terminal 20, which is imparted to the authentication key, different according to whether the user is the owner user of the vehicle 10 or the regular user other than the owner user of the vehicle 10.

According to the embodiment, the authentication key issuance unit 323 makes the authority regarding the sharing of the authentication key (for example, the number of times the authentication key can be shared or the number of persons with which the authentication key can be shared) different between the owner user of the vehicle 10 and the regular user (a child user) other than the owner user. Therefore, for example, the owner user may wish to limit unneeded spreading of the authentication key by another regular user of the vehicle 10, and the authentication key issuance unit 323 can limit the authority regarding the sharing of the authentication key to be distributed to the mobile terminal 20 of the regular user other than the owner user.

The embodiments for carrying out the present disclosure have been described in detail above, but the present disclosure is not limited to the specific embodiments as described above, and various modifications and changes can be performed without departing from the gist of the present disclosure described in the claims.

For example, in the embodiment described above, the mobile terminal 20 transmits the authentication request including the authentication key to the key unit 12, and the key unit 12 performs exchange of signals with the locking, unlocking and activation device 11 according to an authentication result based on the authentication key. Therefore, the locking and unlocking of the doors of the vehicle 10A by the locking, unlocking and activation device 11 and the activation of the vehicle 10A are realized, but the present disclosure is not limited to the above aspect.

Specifically, a configuration in which the function of the key unit 12 is transferred to the mobile terminal 20, and the mobile terminal 20 performs exchange of signals based on the above-described key information (internal key information) with the vehicle 10 (the locking, unlocking and activation device 11) using the LF radio waves and the RF radio waves such that the locking and unlocking of the doors of the vehicle 10A and the activation of the vehicle 10A by the locking, unlocking and activation device 11 are realized may be adopted. In the above-described case, the “authentication key” of the embodiment described above may be read as the “key information”. That is, the center server 30 may issue the key information instead of the authentication key and distribute the key information to the mobile terminal 20 in the same method as in the authentication key in the above-described embodiment. Accordingly, the same operation and effects as those of the above-described embodiment can be obtained.

The functions of the key unit 12 may be integrated with the locking, unlocking and activation device 11, and a configuration regarding communication between the locking, unlocking and activation device 11 and the key unit 12 and authentication related to the communication (the LF radio wave transmitter 111, the RF radio wave receiver 112, the collating ECU 113, the LF radio wave receiver 121, and the RF radio wave transmitter 122) may be omitted. In the above-described case, when the authentication of the mobile terminal 20 based on the authentication key has been successful, the key ECU 124 may directly output an unlocking command or a locking command and an activation command to each of the body ECU 114 and the engine ECU 116 instead of the collating ECU 113, and perform locking and unlocking the doors of the vehicle 10 and activation of the vehicle 10. Accordingly, the same operation and effects as those of the above-described embodiment can be obtained. 

What is claimed is:
 1. A key information management device comprising a key information distribution unit configured to distribute, to a mobile terminal, key information for unlocking or activating a vehicle by the mobile terminal transmitting a predetermined transmission signal to the vehicle, wherein the key information distribution unit makes an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, different according to the mobile terminal that is a distribution target.
 2. The key information management device according to claim 1, wherein when the key information distribution unit distributes the key information to the mobile terminal related to a predetermined service of using the vehicle, the key information distribution unit makes the authority regarding unlocking or activation of the vehicle different according to content of the predetermined service.
 3. The key information management device according to claim 2, wherein when the predetermined service is a car sharing service for a general consumer by a company or a key sharing service in which a plurality of users including an owner user of the vehicle receives the key information with the respective mobile terminals, the key information distribution unit distributes the key information with an authority with which all doors of the vehicle are unlocked and the vehicle is activated, to the mobile terminal.
 4. The key information management device according to claim 2, wherein when the predetermined service is a car sharing service among individuals, the key information distribution unit distributes the key information with an authority with which solely a door for getting on and off among all the doors of the vehicle is unlocked, to the mobile terminal.
 5. The key information management device according to claim 2, wherein when the predetermined service is a delivery service in which a luggage room of the vehicle is designated as a luggage delivery destination, the key information distribution unit distributes the key information with an authority with which solely a door through which the luggage room is accessed among all the doors of the vehicle is unlocked, to the mobile terminal.
 6. The key information management device according to claim 2, wherein when the predetermined service is a car sharing service in which an inside of a cabin of the vehicle is used as a trunk room, the key information distribution unit distributes the key information with an authority with which the vehicle is not activated, to the mobile terminal.
 7. The key information management device according to claim 1, wherein when a user of the mobile terminal that is a distribution target is the user of the vehicle, the key information distribution unit makes an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, different according to whether the user is an owner user of the vehicle or a user other than the owner user of the vehicle.
 8. The key information management device according to claim 1, wherein when the user of the mobile terminal that is a distribution target is a user of the vehicle, the key information distribution unit makes an authority regarding sharing of the key information with another mobile terminal, which is imparted to the key information, different according to whether the user is an owner user of the vehicle or a user other than the owner user of the vehicle.
 9. A key information management method that is executed by a key information management device, the key information management method comprising distributing, to a mobile terminal, key information for unlocking or activating a vehicle by the mobile terminal transmitting a predetermined transmission signal to the vehicle, wherein in the distributing of the key information, an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, is made different according to the mobile terminal that is a distribution target.
 10. A non-transitory computer readable medium storing a key information management program causing an information processing device to execute a key information distribution step of distributing, to a mobile terminal, key information for unlocking or activating a vehicle by the mobile terminal transmitting a predetermined transmission signal to the vehicle, wherein in the key information distribution step, an authority regarding unlocking or activation of the vehicle, which is imparted to the key information, is made different according to the mobile terminal that is a distribution target. 